Description
phpMyAdmin 4.6.x before 4.6.3, when the environment lacks a PHP_SELF value, allows remote attackers to conduct cookie-attribute injection attacks via a crafted URI.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2012-5084 Vulnerability (CVE-2012-5084)
PHP Resource Management Errors Vulnerability (CVE-2012-0830)
SharePoint CVE-2020-1335 Vulnerability (CVE-2020-1335)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4308)
OpenSSL Resource Management Errors Vulnerability (CVE-2015-1788)