Family: CGI abuses --> Category: attack
phpMyAdmin arbitrary files reading Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of sql.php
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script that is affected by a
local file inclusion flaw.
It is possible to make the remote phpMyAdmin installation read
arbitrary data on the remote host. A possible hacker may use this flaw to
read arbitrary files that your web server has the right to access or
execute arbitrary PHP code.
See also :
Upgrade to phpMyAdmin 2.2.1 or newer
Medium / CVSS Base Score : 6
Click HERE for more information and discussions on this network vulnerability scan.