phpMyAdmin Multiple Path Disclosure Vulnerabilities (PMASA-2016-1, PMASA-2016-6, PMASA-2016-8)

The phpMyAdmin application hosted on the remote web server is affected by multiple path disclosure vulnerabilities in multiple scripts. An unauthenticated, remote attacker can exploit these vulnerabilities, via a specially crafted request, to disclose the full path of the directory where phpMyAdm...

[SECURITY] Fedora 22 Update: phpMyAdmin-4.5.5.1-1.fc22

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 22 Update: php-udan11-sql-parser-3.4.0-1.fc22

A validating SQL lexer and parser with a focus on MySQL dialect. This library was originally developed for phpMyAdmin during the Google Summer of Code 2015. To use this library, you just have to add, in your project: requireonce '/usr/share/php/SqlParser/autoload.php';...

Fedora Update for phpMyAdmin FEDORA-2016-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 22 : php-udan11-sql-parser-3.4.0-1.fc22 / phpMyAdmin-4.5.5.1-1.fc22 (2016-02ee5b4002)

phpMyAdmin 4.5.5.1 2016-02-29 =============================== This release fixes multiple XSS vulnerabilities, please see PMASA-2016-10, PMASA-2016-11, and PMASA-2016-12 for details; additionally it fixes a vulnerability allowing man- in-the-middle attack on an API call to GitHub, see PMASA-2016-...

Fedora 23 : php-udan11-sql-parser-3.4.0-1.fc23 / phpMyAdmin-4.5.5.1-1.fc23 (2016-65da02b95c)

phpMyAdmin 4.5.5.1 2016-02-29 =============================== This release fixes multiple XSS vulnerabilities, please see PMASA-2016-10, PMASA-2016-11, and PMASA-2016-12 for details; additionally it fixes a vulnerability allowing man- in-the-middle attack on an API call to GitHub, see PMASA-2016-...

Fedora Update for phpMyAdmin FEDORA-2016-65

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)

It has been discovered that the extension "phpMyAdmin" phpmyadmin is susceptible to unsafe comparison of XSRF/CSRF token, multiple full path disclosure vulnerabilities, multiple XSS vulnerabilities, insecure password generation in JavaScript. Release Date: March 10, 2016 Component Type: Third par...

[SECURITY] Fedora 23 Update: php-udan11-sql-parser-3.4.0-1.fc23

A validating SQL lexer and parser with a focus on MySQL dialect. This library was originally developed for phpMyAdmin during the Google Summer of Code 2015. To use this library, you just have to add, in your project: requireonce '/usr/share/php/SqlParser/autoload.php';...

[SECURITY] Fedora 23 Update: phpMyAdmin-4.5.5.1-1.fc23

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

openSUSE Security Update : phpMyAdmin (openSUSE-2016-305)

This update to phpMyAdmin 4.4.15.4 fixes the following security issues : - CVE-2016-2560: Multiple XSS vulnerabilities PMASA-2016-11 boo968938 - CVE-2016-2561: Multiple XSS vulnerabilities PMASA-2016-12 boo968941 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...

openSUSE Security Update : phpMyAdmin (openSUSE-2016-304)

This update to phpMyAdmin 4.4.15.4 fixes the following security issues : - CVE-2016-2560: Multiple XSS vulnerabilities PMASA-2016-11 boo968938 - CVE-2016-2561: Multiple XSS vulnerabilities PMASA-2016-12 boo968941 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...

Fedora 22 : phpMyAdmin-4.5.3.1-1.fc22 (2015-345966871c)

phpMyAdmin 4.5.3.1 2015-12-25 =============================== - Undefined offset 2 - Security Path disclosure, see PMASA-2015-6 ---- phpMyAdmin 4.5.3.0 2015-12-23 =============================== - Incomplete results of UNION ALL - MATCH AGAINST keywords not recognized - syntax verifier is not...

Fedora 21 : php-udan11-sql-parser-3.0.4-1.fc21 / phpMyAdmin-4.5.1-1.fc21 (2015-5c06260c4b)

phpMyAdmin 4.5.1.0 2015-10-23 =============================== - Invalid argument supplied for foreach - arraykeyexists expects parameter 2 to be array - Notice Undefined index: dropdatabase - Server variable edition in ANSIQUOTES sqlmode: losing current value - Propose table structure broken -...

Fedora 22 : php-udan11-sql-parser-3.0.4-1.fc22 / phpMyAdmin-4.5.1-1.fc22 (2015-17908c56c1)

phpMyAdmin 4.5.1.0 2015-10-23 =============================== - Invalid argument supplied for foreach - arraykeyexists expects parameter 2 to be array - Notice Undefined index: dropdatabase - Server variable edition in ANSIQUOTES sqlmode: losing current value - Propose table structure broken -...

Fedora 22 : phpMyAdmin-4.5.4-1.fc22 (2016-e1fe01e96e)

phpMyAdmin 4.5.4 2016-01-28 ============================= - live data edit of big sets is not working - Table list not saved in db QBE bookmarked search - While 'changing a column', query fails with a syntax error after the 'CHARSET=' keyword - Avoid syntax error in JavaScript messages on invalid...

Fedora 23 : phpMyAdmin-4.5.4.1-1.fc23 (2016-e55278763e)

phpMyAdmin 4.5.4.1 2016-01-28 =============================== - Error with PMA 4.4.15.3 - Remove hard dependency on phpseclib phpMyAdmin 4.5.4 2016-01-28 ============================= - live data edit of big sets is not working - Table list not saved in db QBE bookmarked search - While 'changing ...

Fedora 23 : phpMyAdmin-4.5.3.1-1.fc23 (2015-deb2bbdde0)

phpMyAdmin 4.5.3.1 2015-12-25 =============================== - Undefined offset 2 - Security Path disclosure, see PMASA-2015-6 ---- phpMyAdmin 4.5.3.0 2015-12-23 =============================== - Incomplete results of UNION ALL - MATCH AGAINST keywords not recognized - syntax verifier is not...

Fedora 23 : php-udan11-sql-parser-3.0.4-1.fc23 / phpMyAdmin-4.5.1-1.fc23 (2015-287c164df5)

phpMyAdmin 4.5.1.0 2015-10-23 =============================== - Invalid argument supplied for foreach - arraykeyexists expects parameter 2 to be array - Notice Undefined index: dropdatabase - Server variable edition in ANSIQUOTES sqlmode: losing current value - Propose table structure broken -...

Mageia: Security Advisory (MGASA-2016-0092)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...