cpe:/a:phppgadmin:phppgadmin:2.2 cpe:/a:phppgadmin:phppgadmin:2.2.1 cpe:/a:phppgadmin:phppgadmin:3.1 cpe:/a:phppgadmin:phppgadmin:3.4.1 cpe:/a:phppgadmin:phppgadmin:3.5 cpe:/a:phppgadmin:phppgadmin:3.5.2 cpe:/a:phppgadmin:phppgadmin:3.5.3 cpe:/a:phppgadmin:phppgadmin:4.1.1 cpe:/a:phppgadmin:phppgadmin:4.2.1 CVE-2008-5587 2008-12-16T14:07:31.843-05:00 2017-09-28T21:32:41.227-04:00 4.3 NETWORK MEDIUM NONE PARTIAL NONE NONE http://nvd.nist.gov 2008-12-16T16:23:00.000-05:00 BID 32670 SECUNIA 33014 SECUNIA 33263 SREASON 4737 EXPLOIT-DB 7363 DEBIAN DSA-1693 SUSE SUSE-SR:2009:004 SUSE openSUSE-SU-2012:0493 XF phppgadmin-index-file-include(47140) Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and earlier, when register_globals is enabled, allows remote attackers to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.