Description
phpmyadmin.css.php in phpMyAdmin 3.4.x before 3.4.6 allows remote attackers to obtain sensitive information via an array-typed js_frame parameter to phpmyadmin.css.php, which reveals the installation path in an error message.
Remediation
References
Related Vulnerabilities
WordPress Improper Input Validation Vulnerability (CVE-2017-1000600)
WordPress Plugin Catch Breadcrumb Security Bypass (1.6)
WordPress Plugin Download Plugin Unspecified Vulnerability (1.6.1)
TYPO3 CVE-2023-47126 Vulnerability (CVE-2023-47126)
OpenSSL Improper Input Validation Vulnerability (CVE-2014-3567)