CVE-2004-0129 | HackTesting

Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in the what parameter.

References

http://www.phpmyadmin.net/home_page/relnotes.php?rel=0

https://exchange.xforce.ibmcloud.com/vulnerabilities/15021

http://security.gentoo.org/glsa/glsa-200402-05.xml

http://secunia.com/advisories/10769

http://www.osvdb.org/3800

http://marc.info/?l=bugtraq&m=107582619125932&w=2

http://www.securityfocus.com/bid/9564

http://sourceforge.net/forum/forum.php?forum_id=350228