Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2016-5730 - Vulnerability Database
phpMyAdmin

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2016-5730

Medium
Reference: CVE-2016-5730
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-5730
Title: phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

phpMyAdmin 4.0.x before 4.0.10.16 4.4.x before 4.4.15.7 and 4.6.x before 4.6.3 allows remote attackers to obtain sensitive information via vectors involving (1) an array value to FormDisplay.php (2) incorrect data to validate.php (3) unexpected data to Validator.php (4) a missing config directory during setup or (5) an incorrect OpenID identifier data type which reveals the full path in an error message.