CVE-2001-1168

Last update: Apr 13, 2023

Description

Directory traversal vulnerability in index.php in PhpMyExplorer before 1.2.1 allows remote attackers to read arbitrary files via a ..%2F (modified dot dot) in the chemin parameter.

Affected Software
References

Software	From	Fixed in
phpmyexplorer / phpmyexplorer_classic	1.0	1.0.x
phpmyexplorer / phpmyexplorer_classic	1.1.0	1.1.0.x
phpmyexplorer / phpmyexplorer_classic	1.1.1	1.1.1.x
phpmyexplorer / phpmyexplorer_classic	1.1.3	1.1.3.x
phpmyexplorer / phpmyexplorer_classic	1.1.4	1.1.4.x
phpmyexplorer / phpmyexplorer_classic	1.1.5	1.1.5.x
phpmyexplorer / phpmyexplorer_classic	1.2	1.2.x
phpmyexplorer / phpmyexplorer_multiuser	1.0	1.0.x

Severity: Medium

CVE: CVE-2001-1168
Published: Aug 29, 2001
Updated: Apr 13, 2023
Exploit:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N