phpMyAdmin before 2.9.1-rc1 has a libraries directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via direct requests for certain files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Phpmyadmin | Phpmyadmin | 2.8.1_dev | 2.8.1_dev |
Phpmyadmin | Phpmyadmin | 2.8.3 | 2.8.3 |
Phpmyadmin | Phpmyadmin | 2.8.0.2 | 2.8.0.2 |
Phpmyadmin | Phpmyadmin | 2.9.0_dev | 2.9.0_dev |
Phpmyadmin | Phpmyadmin | 2.8.0.1 | 2.8.0.1 |
Phpmyadmin | Phpmyadmin | 2.8.1 | 2.8.1 |
Phpmyadmin | Phpmyadmin | 2.8.0.3 | 2.8.0.3 |
Phpmyadmin | Phpmyadmin | 2.8.4 | 2.8.4 |