phpmyadmin/phpmyadmin is a web interface for MySQL and MariaDB.
Affected versions of this package are vulnerable to Arbitrary File Read. An attacker could read any file on the server that the web server's user could access.
Note This vulnerability is exploitable only when the
AllowArbitraryServer configuration set to true.
phpmyadmin/phpmyadmin to version 4.8.5 or higher.