Description
Directory traversal vulnerability in sql.php in phpMyAdmin 3.4.x before 3.4.3.2, when configuration storage is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in a MIME-type transformation parameter.
Remediation
References
Related Vulnerabilities
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1452)
Drupal Core 8.5.x Cross-Site Scripting (8.5.0 - 8.5.13)
ownCloud Improper Input Validation Vulnerability (CVE-2012-5336)
WebLogic CVE-2022-21292 Vulnerability (CVE-2022-21292)
WordPress Plugin Hungred Post Thumbnail 'hpt_file_upload.php' Arbitrary File Upload (2.1.9)