Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PhpMyAdmin exposure of sensitive information
Vulnerability Description
PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating invalid requests. This affects the lang parameter, the pma_parameter, and the cookie section.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
phpMyAdmin 信息泄露漏洞
Vulnerability Description
phpMyAdmin是Phpmyadmin团队的一套免费的、基于Web的MySQL数据库管理工具。该工具能够创建和删除数据库,创建、删除、修改数据库表,执行SQL脚本命令等。 phpMyAdmin 5.1.1及其之前版本存在安全漏洞,该漏洞源于软件缺少对于lang 参数、pma_parameter参数和cookie的有效的认证和权限限制。攻击者通过创建无效请求来利用该漏洞可以访问和检索应用中潜在的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A