Description

phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function.

Remediation

References

CVE-2010-4481

Related Vulnerabilities

MySQL CVE-2014-2430 Vulnerability (CVE-2014-2430)

WordPress Plugin CheetahO Image Compression and Optimizer Unspecified Vulnerability (1.4.2.1)

Oracle Database Server CVE-2010-2390 Vulnerability (CVE-2010-2390)

Sqlite Improper Handling of Exceptional Conditions Vulnerability (CVE-2019-19924)

MySQL CVE-2012-0487 Vulnerability (CVE-2012-0487)

Severity

Medium

Classification

CVE-2010-4481 CWE-287

Tags

Missing Update Known Vulnerabilities