FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

phpMyAdmin -- Multiple vulnerabilities

Affected packages
4.6.0 <= phpMyAdmin < 4.6.6

Details

VuXML ID 7721562b-e20a-11e6-b2e2-6805ca0b3d42
Discovery 2017-01-24
Entry 2017-01-24

The phpMyAdmin development team reports:

Open redirect

[source]

php-gettext code execution

[source]

DOS vulnerability in table editing

[source]

CSS injection in themes

[source]

Cookie attribute injection attack

[source]

SSRF in replication

[source]

DOS in replication status

[source]

References

CVE Name CVE-2015-8980
URL https://www.phpmyadmin.net/security/PMASA-2017-1
URL https://www.phpmyadmin.net/security/PMASA-2017-2
URL https://www.phpmyadmin.net/security/PMASA-2017-3
URL https://www.phpmyadmin.net/security/PMASA-2017-4
URL https://www.phpmyadmin.net/security/PMASA-2017-5
URL https://www.phpmyadmin.net/security/PMASA-2017-6
URL https://www.phpmyadmin.net/security/PMASA-2017-7

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.