Description

An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP information including values of HttpOnly cookies. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

Remediation

References

CVE-2016-9848

Related Vulnerabilities

WordPress 6.5 Cross-Site Scripting (6.5)

WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.3.4)

WordPress Plugin SendPress Newsletters Security Bypass (1.2.10.20)

WebLogic Improper Certificate Validation Vulnerability (CVE-2020-9488)

WordPress Plugin Mingle Forum Multiple Cross-Site Scripting Vulnerabilities (1.0.33)

Severity

Medium

Classification

CVE-2016-9848 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities