FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

phpMyAdmin -- Multiple vulnerabilities

Affected packages
4.6.0 <= phpMyAdmin < 4.6.6

Details

VuXML ID 7721562b-e20a-11e6-b2e2-6805ca0b3d42
Discovery 2017-01-24
Entry 2017-01-24

The phpMyAdmin development team reports:

Open redirect

php-gettext code execution

DOS vulnerability in table editing

CSS injection in themes

Cookie attribute injection attack

SSRF in replication

DOS in replication status

References

CVE Name CVE-2015-8980
URL https://www.phpmyadmin.net/security/PMASA-2017-1
URL https://www.phpmyadmin.net/security/PMASA-2017-2
URL https://www.phpmyadmin.net/security/PMASA-2017-3
URL https://www.phpmyadmin.net/security/PMASA-2017-4
URL https://www.phpmyadmin.net/security/PMASA-2017-5
URL https://www.phpmyadmin.net/security/PMASA-2017-6
URL https://www.phpmyadmin.net/security/PMASA-2017-7