Descriptionlibraries/config/messages.inc.php in phpMyAdmin 4.0.x before 220.127.116.11, 4.4.x before 18.104.22.168, and 4.5.x before 22.214.171.124 allows remote attackers to obtain sensitive information via a crafted request, which reveals the full path in an error message.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- openSUSE-SU-2016:0067-1, published Mon, 11 Jan 2016 14:11:44 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA phpMyAdmin-126.96.36.199-1.1
SUSE Timeline for this CVECVE page created: Sun Dec 27 02:15:06 2015
CVE page last modified: Fri Oct 7 12:47:22 2022