[SECURITY] Fedora 27 Update: php-phpmyadmin-motranslator-4.0-1.fc27

Translation API for PHP using Gettext MO files. Features All strings are stored in memory for fast lookup Fast loading of MO files Low level API for reading MO files Emulation of Gettext API No use of eval for plural equation Limitations Not suitable for huge MO files which you don't want to stor...

[SECURITY] Fedora 27 Update: phpMyAdmin-4.7.8-1.fc27

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

openSUSE Security Update : phpMyAdmin (openSUSE-2018-206)

This update for phpMyAdmin 4.7.8 fixes the following issues : - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499. %NASLMINLEVEL 70300 C...

OPENSUSE-SU-2018:0536-1 Security update for phpMyAdmin

This update for phpMyAdmin 4.7.8 fixes the following issues: - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499...

OPENSUSE-SU-2018:0534-1 Security update for phpMyAdmin

This update for phpMyAdmin 4.7.8 fixes the following issues: - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499...

[ASA-201802-11] phpmyadmin: cross-site scripting

Arch Linux Security Advisory ASA-201802-11 ========================================== Severity: Medium Date : 2018-02-23 CVE-ID : CVE-2018-7260 Package : phpmyadmin Type : cross-site scripting Remote : Yes Link : https://security.archlinux.org/AVG-630 Summary ======= The package phpmyadmin before...

FreeBSD : phpMyAdmin -- self XSS in central columns feature (261ca31c-179f-11e8-b8b9-6805ca0b3d42)

The phpMyAdmin team reports : Summary Self XSS in central columns feature Description A self-cross site scripting XSS vulnerability has been reported relating to the central columns feature. Severity We consider this vulnerability to be of moderate severity. Mitigation factor A valid token must b...

CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

UBUNTU-CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

DEBIAN-CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2018-7260

CVE-2018-7260 affects phpMyAdmin (db_central_columns.php) and is a cross-site scripting (XSS) flaw in versions prior to 4.7.8. The issue allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, with impact described in the sources as XSS and partial integrity im...

CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

phpMyAdmin -- self XSS in central columns feature

The phpMyAdmin team reports: Summary Self XSS in central columns feature Description A self-cross site scripting XSS vulnerability has been reported relating to the central columns feature. Severity We consider this vulnerability to be of moderate severity. Mitigation factor A valid token must be...

Exploit for Code Injection in Phpmyadmin

minervais.com.phpMyAdminRCE.sh phpMyAdmin '/scripts/setup.php'...

Exploit for Code Injection in Phpmyadmin

minervais.com.phpMyAdminRCE.sh phpMyAdmin '/scripts/setup.php'...

phpMyAdmin Cross-Site Request Forgery Vulnerability (CNVD-2018-04307)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A cross-site request forgery vulnerability exists in phpMyAdmin due to the program failing to properly validate HTTP requests. A remote attacker could exploit the vulnerability to perform certain...

Fedora 27 : phpMyAdmin (2017-cad79c7c6c)

Upstream announcement : Welcome to phpMyAdmin 4.7.7, a regular maintenance release containing bug fixes and a security fix. The security vulnerability is a XSRF/CSRF flaw; you can read more at https://www.phpmyadmin.net/security/PMASA-2017-9/ As a result of this, we recommend all users upgrade...

Web servers PHPMyAdmin Suspicious Table Hyperlink (CVE-2017-1000499)

A PhpMyAdmin user could be subject to a phishing attack. This is due to the way PhpMyAdmin handles modify requests. A successful attack could lead to malicious SQL command execution...