Description

Directory traversal vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to obtain potentially sensitive information about a file's line count via a crafted parameter.

Remediation

References

CVE-2014-8961

Related Vulnerabilities

WordPress Plugin Read and Understood Multiple Vulnerabilities (2.1)

OpenSSL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2021-3711)

Ruby on Rails Improper Authentication Vulnerability (CVE-2012-3424)

Moodle Incorrect Authorization Vulnerability (CVE-2021-20283)

WordPress 3.9.x Cross-Domain Flash Injection Vulnerability (3.9 - 3.9.22)

Severity

Medium

Classification

CVE-2014-8961 CWE-22

Tags

Missing Update Known Vulnerabilities