Description
phpMyAdmin 2.9.1.1 allows remote attackers to obtain sensitive information via a direct request for themes/darkblue_orange/layout.inc.php, which reveals the path in an error message.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-2898 Vulnerability (CVE-2020-2898)
Squid Out-of-bounds Read Vulnerability (CVE-2023-49285)
Drupal Core 8.x.x Denial of Service (8.0.0 - 8.6.18)
Dolibarr Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-25957)
Magento Improper Input Validation Vulnerability (CVE-2015-6497)