Description
An issue was discovered in phpMyAdmin. An attacker can determine whether a user is logged in to phpMyAdmin. The user's session, username, and password are not compromised by this vulnerability. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2011-3192)
WordPress Plugin ARS Reg Secure Cross-Site Scripting (1.1)
WordPress Plugin Users Ultra Membership Cross-Site Scripting (1.5.78)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-5540)