Description
An issue was discovered in phpMyAdmin. Due to the limitation in URL matching, it was possible to bypass the URL white-list protection. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.
Remediation
References
Related Vulnerabilities
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.42)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5497)
WordPress 3.7.x Possible SQL Injection Vulnerability (3.7 - 3.7.22)
Internet Information Services Other Vulnerability (CVE-2003-0224)