CVE-2019-19617

phpMyAdmin before 4.9.2 does not escape certain Git information, related to libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php...

CVE-2019-19617

CVE-2019-19617 affects phpMyAdmin prior to 4.9.2. The issue is that phpMyAdmin does not escape certain Git information in GitRevision.php and Footer.php, per multiple advisories. Connected documents confirm affected product/version ranges and link to fix/release notes. The Debian entry notes the ...

CVE-2019-19617

phpMyAdmin before 4.9.2 does not escape certain Git information, related to libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php...

Fedora Update for phpMyAdmin FEDORA-2019-8f55b515f1

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 30 : phpMyAdmin (2019-8f55b515f1)

Upstream announcement : phpMyAdmin 4.9.2 is released 2019-11-22 Welcome to phpMyAdmin 4.9.2, a bugfix release that also contains a security fix. This security fix is part of an ongoing effort to improve the security of the Designer feature and is designated PMASA-2019-5. There is also an...

openSUSE Security Update : phpMyAdmin (openSUSE-2019-2599)

This update for phpMyAdmin fixes the following issues : phpMyAdmin was updated to 4.9.2 : - CVE-2019-18622: SQL injection in Designer feature boo1157614 - Fixes for 'Failed to set session cookie' error - Advisor with MySQL 8.0.3 and newer - Fix PHP deprecation errors - Fix a situation where...

Fedora 31 : phpMyAdmin (2019-db68ae1fca)

Upstream announcement : phpMyAdmin 4.9.2 is released 2019-11-22 Welcome to phpMyAdmin 4.9.2, a bugfix release that also contains a security fix. This security fix is part of an ongoing effort to improve the security of the Designer feature and is designated PMASA-2019-5. There is also an...

openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2019:2599-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:2599-1 Security update for phpMyAdmin

This update for phpMyAdmin fixes the following issues: phpMyAdmin was updated to 4.9.2: CVE-2019-18622: SQL injection in Designer feature boo1157614 Fixes for 'Failed to set session cookie' error Advisor with MySQL 8.0.3 and newer Fix PHP deprecation errors Fix a situation where exporting users...

[SECURITY] Fedora 30 Update: phpMyAdmin-4.9.2-1.fc30

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 31 Update: phpMyAdmin-4.9.2-1.fc31

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

Security update for phpMyAdmin (moderate)

openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2019:2599-1 Rating: moderate References: 1157614 Cross-References: CVE-2019-18622 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 SUSE Package Hub...

phpMyAdmin 4.7.7 < 4.9.2 SQLi (PMASA-2019-5)

According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is at least 4.7.7 and prior to 4.9.2. It is, therefore, affected by a SQL injection SQLi vulnerability. A remote attacker can exploit this by using a crafted database or table name in the...

SQL Injection

phpmyadmin/phpmyadmin is vulnerable to SQL injection. The vulnerability exists as the database and table name of designer feature is not properly sanitized to prevent arbitrary SQL query to be injected and executed...

phpMyAdmin SQL Injection Vulnerability (CNVD-2019-45016)

phpMyAdmin is a free, web-based MySQL database management tool from the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A SQL injection vulnerability exists in versions of phpMyAdm...

phpMyAdmin < 4.9.2 Multiple Vulnerabilities (PMASA-2019-5) - Windows

phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if...

phpMyAdmin < 4.9.2 Multiple Vulnerabilities (PMASA-2019-5) - Linux

phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if...

CVE-2019-18622

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature...

DEBIAN-CVE-2019-18622

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature...

CVE-2019-18622

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature...