EUVD-2022-1557
ID: EUVD-2022-1557
Severity: medium
CVSS v4: Not provided
CVSS v3: 5.3 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
CWE: None listed
Source: ENISA
Description
PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating invalid requests. This affects the lang parameter, the pma_parameter, and the cookie section.
Timestamps
- Normalized:
- Last updated:
References
No references provided.