Description
phpMyAdmin 3.5.x before 3.5.8.2 allows remote attackers to obtain sensitive information via an invalid request, which reveals the installation path in an error message, related to config.default.php and other files.
Remediation
References
Related Vulnerabilities
MySQL CVE-2017-3643 Vulnerability (CVE-2017-3643)
Oracle HTTP Server CVE-2021-2315 Vulnerability (CVE-2021-2315)
Squid Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2213)
MySQL CVE-2021-35610 Vulnerability (CVE-2021-35610)
WordPress Plugin WordPress Facebook Multiple Cross-Site Scripting Vulnerabilities (1.0.10)