Lucene search

K
osvGoogleOSV:DSA-3382-1
HistoryOct 28, 2015 - 12:00 a.m.

phpmyadmin - security update

2015-10-2800:00:00
Google
osv.dev
15

EPSS

0.218

Percentile

96.5%

Several issues have been fixed in phpMyAdmin, the web administration
tool for MySQL.

Multiple cross-site scripting (XSS) vulnerabilities.

Denial of service (resource consumption) via a long password.

Vulnerability allowing man-in-the-middle attack on API call to GitHub.

Vulnerability that allows bypassing the reCaptcha test.

Content spoofing vulnerability when redirecting user to an
external site.

For the oldstable distribution (wheezy), these problems have been fixed
in version 4:3.4.11.1-2+deb7u2.

For the stable distribution (jessie), these problems have been fixed in
version 4:4.2.12-2+deb8u1.

For the unstable distribution (sid), these problems have been fixed in
version 4:4.5.1-1.

We recommend that you upgrade your phpmyadmin packages.