Vulnerability: Disclosure of HttpOnly Cookies in phpMyAdmin

Vulnerability: Disclosure of HttpOnly Cookies in phpMyAdmin

CVE-2016-9848 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP information including values of HttpOnly cookies. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

Learn more about our Web Application Penetration Testing UK.