Description

An issue was discovered in phpMyAdmin. An attacker can determine the phpMyAdmin host location through the file url.php. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Remediation

References

CVE-2016-6627

Related Vulnerabilities

WordPress Plugin Basic Google Maps Placemarks Cross-Site Scripting (1.10.2)

TYPO3 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2010-3663)

WordPress Plugin WP Security Question Cross-Site Request Forgery (1.0.5)

WordPress Plugin Really Simple Gallery Multiple Vulnerabilities (1.4)

Oracle JRE CVE-2020-2754 Vulnerability (CVE-2020-2754)

Severity

Medium

Classification

CVE-2016-6627 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities