Skip to main content

phpMyAdmin Multiple Vulnerabilities

Last Update Date: 13 Oct 2020 10:24 Release Date: 13 Oct 2020 4783 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities were identified in phpMyAdmin, a remote attacker can exploit these vulnerabilities to trigger cross site scripting and bypass security restriction on the targeted system.


Impact

  • Cross-Site Scripting
  • Security Restriction Bypass

System / Technologies affected

  • phpMyAdmin 4.9.x releases prior to 4.9.6
  • phpMyAdmin 5.0.x releases prior to 5.0.3

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

  • Apply fixes issued by the vendor:
    phpMyAdmin 4.9.6 or 5.0.3 or later:

https://www.phpmyadmin.net/security/PMASA-2020-5/

https://www.phpmyadmin.net/security/PMASA-2020-6/


Vulnerability Identifier


Source


Related Link