Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-4219 at MITRE


show_config_errors.php in phpMyAdmin 3.5.x before allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message, related to lack of inclusion of the library file.
CVSS v2 Scores
  National Vulnerability Database
Base Score 4.96
Vector AV:N/AC:L/Au:N/C:P/I:N/A:N
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact None
Availability Impact None

SUSE information

SUSE Bugzilla entry: 776698 [RESOLVED / FIXED]

SUSE Security Advisories: