DLA-2154-1 phpmyadmin - security update

Bulletin has no description...

phpMyAdmin -- SQL injection

phpMyAdmin Team reports: PMASA-2020-2 SQL injection vulnerability in the user accounts page, particularly when changing a password PMASA-2020-3 SQL injection vulnerability relating to the search feature PMASA-2020-4 SQL injection and XSS having to do with displaying results Removing of the...

SQL injection with processing username

PMASA-2020-2 Announcement-ID: PMASA-2020-2 Date: 2020-03-20 Updated: 2020-03-22 Summary SQL injection with processing username Description An SQL injection vulnerability was found in how phpMyAdmin retrieves the current username. A malicious user with access to the server could create a...

SQL injection relating to data display

PMASA-2020-4 Announcement-ID: PMASA-2020-4 Date: 2020-03-20 Updated: 2020-03-22 Summary SQL injection relating to data display Description An SQL injection vulnerability was discovered where malicious code could be used to trigger an XSS attack through retrieving and displaying results. The attac...

SQL injection relating to searching

PMASA-2020-3 Announcement-ID: PMASA-2020-3 Date: 2020-03-20 Updated: 2020-03-22 Summary SQL injection relating to searching Description An SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions within...

GLSA-202003-39 : phpMyAdmin: SQL injection

The remote host is affected by the vulnerability described in GLSA-202003-39 phpMyAdmin: SQL injection PhpMyAdmin was vulnerable to a SQL injection attack through the designer feature. Impact : An authenticated remote attacker, by specifying a specially crafted database/table name, could trigger ...

phpMyAdmin: SQL injection

Background phpMyAdmin is a web-based management tool for MySQL databases. Description PhpMyAdmin was vulnerable to an SQL injection attack through the designer feature. Impact An authenticated remote attacker, by specifying a specially crafted database/table name, could trigger an SQL injection...

SQL injection with processing username

More info at https://www.phpmyadmin.net/security/PMASA-2020-2/...

SQL Injection

phpmyadmin is vulnerable to SQL injection. The username parameter allows a remote attacker to inject and execute arbitrary SQL statements into the database...

SQL Injection in extension "phpmyadmin" (phpmyadmin)

Multiple vulnerabilities have been found in the phpMyAdmin component...

CVE-2013-4454

WordPress Portable phpMyAdmin Plugin 1.4.1 has Multiple Security Bypass Vulnerabilities...

Security feature bypass

WordPress Portable phpMyAdmin Plugin 1.4.1 has Multiple Security Bypass Vulnerabilities...

CVE-2013-4454

CVE-2013-4454 affects WordPress Portable phpMyAdmin Plugin 1.4.1. Connected sources indicate multiple security bypass vulnerabilities in this plugin, without explicit exploit details in the provided documents. The NVD entry lists MEDIUM to CRITICAL severities across CVSS v2/v3, with network-based...

CVE-2013-4454

WordPress Portable phpMyAdmin Plugin 1.4.1 has Multiple Security Bypass Vulnerabilities...

CVE-2013-4462

WordPress Portable phpMyAdmin Plugin has an authentication bypass vulnerability...

Authentication flaw

WordPress Portable phpMyAdmin Plugin has an authentication bypass vulnerability...

CVE-2013-4462

WordPress Portable phpMyAdmin Plugin has an authentication bypass vulnerability...

CVE-2013-4462

The connected data confirms a concrete issue: Portable phpMyAdmin WordPress plugin has an authentication bypass vulnerability described as a Multiple Script Direct Request Authentication Bypass. Affected product: Portable phpMyAdmin WordPress plugin (evidence from WPVulnDB entry citing version 1....

Fedora: Security Advisory for phpMyAdmin (FEDORA-2020-a1b4afe7b5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for phpMyAdmin (FEDORA-2020-cb89758335)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...