phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| phpmyadmin/phpmyadmin(Packagist) | 0 | 3.4.0-beta1 | N/A |
CVSS Metrics
