Description

phpMyAdmin 3.5.x before 3.5.8.2 allows remote attackers to obtain sensitive information via an invalid request, which reveals the installation path in an error message, related to config.default.php and other files.

Remediation

References

CVE-2013-5000

Related Vulnerabilities

WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.19)

PostgreSQL Improper Input Validation Vulnerability (CVE-2012-3489)

WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.136.3)

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.22)

TYPO3 Insertion of Sensitive Information into Log File Vulnerability (CVE-2021-32767)

Severity

Medium

Classification

CVE-2013-5000 CWE-200

Tags

Missing Update Known Vulnerabilities