CVE-2013-4998

EPSS 0.25%

Published: 7/31/2013Modified: 5/7/2026

Description

phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote attackers to obtain sensitive information via an invalid request, which reveals the installation path in an error message, related to pmd_common.php and other files.

Affected packages (1)

Debian/phpmyadminfrom 0, < 4:4.0.4.2-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-4998