Name of the Vulnerable Software and Affected Versions phpMyAdmin (affected versions not specified)

Description A vulnerability allows the restrictions caused by $cfg['Servers'][$i]['AllowNoPassword'] = false to be bypassed under certain PHP versions. This enables users without a password to log in, even if the administrator has set $cfg['Servers'][$i]['AllowNoPassword'] to false.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.