Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-psp9-3jss-cka9
Vulnerability ID VCID-psp9-3jss-cka9
Aliases CVE-2012-1902
Summary show_config_errors.php in phpMyAdmin 3.4.x before 3.4.10.2, when a configuration file does not exist, allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message about this missing file.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00468 https://api.first.org/data/v1/epss?cve=CVE-2012-1902
epss 0.00468 https://api.first.org/data/v1/epss?cve=CVE-2012-1902
epss 0.00468 https://api.first.org/data/v1/epss?cve=CVE-2012-1902
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2012-1902
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1902
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.64818
EPSS Score 0.00468
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:11.489663+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0