CVE-2013-4998 Information

Description

phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote attackers to obtain sensitive information via an invalid request which reveals the installation path in an error message related to pmd_common.php and other files.

Reference

http://www.phpmyadmin.net/home_page/security/PMASA-2013-12.php