Description
show_config_errors.php in phpMyAdmin 3.5.x before 3.5.2.1 allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message, related to lack of inclusion of the common.inc.php library file.
Remediation
References
Related Vulnerabilities
WordPress Plugin UpdraftPlus WordPress Backup Security Bypass (1.9.50)
TCExam Other Vulnerability (CVE-2010-2153)
PHP Out-of-bounds Read Vulnerability (CVE-2020-7067)
WordPress Plugin WP-Footnotes 'admin_panel.php' Multiple Remote Vulnerabilities (2.2)
Atlassian Jira CVE-2020-14165 Vulnerability (CVE-2020-14165)