CVE-2010-4481

Published: Dec 17, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

ADV-2011-0027

vdb-entry

x_refsource_VUPEN

http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commitdiff%3Bh=4d9fd005671b05c4d74615d5939ed45e4d019e4c

x_refsource_CONFIRM

ADV-2011-0001

vdb-entry

x_refsource_VUPEN

42485

third-party-advisory

x_refsource_SECUNIA

DSA-2139

vendor-advisory

x_refsource_DEBIAN

ADV-2010-3238

vdb-entry

x_refsource_VUPEN

http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php

x_refsource_CONFIRM

42725

third-party-advisory

x_refsource_SECUNIA

MDVSA-2011:000

vendor-advisory

x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2010-4481

Description

Affected Products

References