openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2019:2211-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:2211-1 Security update for phpMyAdmin

This update for phpMyAdmin to 4.9.1 fixes the following issues: Security issue fixed: - CVE-2019-12922: Fixed CSRF issue that allowed deletion of any server in the Setup page. boo1150914...

Security update for phpMyAdmin (moderate)

openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2019:2211-1 Rating: moderate References: 1150914 Cross-References: CVE-2019-12922 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 SUSE Package Hub...

PhpMyAdmin Cross-Site Request Forgery (CVE-2019-12922)

A cross-site request forgery vulnerability exists in PhpMyAdmin. Successful exploitation of this vulnerability can result in the deletion of servers...

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of the most popular applications for managing the MySQL and MariaDB databases. phpMyAdmin is a free and open source administration tool for MySQL and MariaDB that's...

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of the most popular applications for managing the MySQL and MariaDB databases. phpMyAdmin is a free and open source administration tool for MySQL and MariaDB that's...

phpMyAdmin < 4.9.1 CSRF Vulnerability - Windows

phpMyAdmin is prone to a CSRF vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if descripti...

phpMyAdmin < 4.9.1 CSRF Vulnerability - Linux

phpMyAdmin is prone to a CSRF vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if descripti...

Exploit for Improper Authentication in Phpmyadmin

CVE-2018-12613 Modified standalone exploit ported to Python 3...

Cross-site Request Forgery (CSRF)

phpMyAdmin is vulnerable to cross-site request forgery CSRF. The attack is possible when the attacker sends a fake hyperlink containing the request, executing on behalf the user, acting as a phpMyAdmin user deleting any server in the Setup page...

phpMyAdmin Cross-Site Request Forgery Vulnerability (CNVD-2019-31657)

phpMyAdmin is a free, web-based MySQL database management tool from the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A cross-site request forgery vulnerability exists in...

phpMyAdmin 4.9.0.1 - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications ============================================= MGC ALERT 2019-003 - Original release date: June 13, 2019 - Last revised: September 13, 2019 - Discovered by: Manuel Garcia Cardenas - Severity: 4,3/10 CVSS Base Score - CVE-ID: CVE-2019-12922...

CVE-2019-12922

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

DEBIAN-CVE-2019-12922

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

CVE-2019-12922

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

CVE-2019-12922

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

UBUNTU-CVE-2019-12922

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

Cross site request forgery (csrf)

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

CVE-2019-12922

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page...

CVE-2019-12922

The CVE-2019-12922 entry concerns a CSRF flaw in phpMyAdmin 4.9.0.1 that allows an attacker to cause deletion of a server from the Setup page by tricking a victim into visiting a crafted page. The root cause is insufficient validation of the HTTP request origin, enabling unauthorized actions on b...