Description

phpMyAdmin before 2.9.1-rc1 has a libraries directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via direct requests for certain files.

Remediation

References

CVE-2006-5117

Related Vulnerabilities

WordPress Plugin Gallery for Social Photo Unspecified Vulnerability (1.0.0.25)

Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-4140)

OpenVPN AS Use After Free Vulnerability (CVE-2023-46850)

MySQL CVE-2020-14656 Vulnerability (CVE-2020-14656)

MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8289)

Severity

Medium

Classification

CVE-2006-5117

Tags

Missing Update Known Vulnerabilities