Описание
Multiple cross-site request forgery (CSRF) vulnerabilities in the setup process in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 allow remote attackers to hijack the authentication of administrators for requests that modify the configuration file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 4:4.4.6.1-1 |
| bionic | not-affected | 4:4.4.6.1-1 |
| cosmic | not-affected | 4:4.4.6.1-1 |
| devel | not-affected | 4:4.4.6.1-1 |
| disco | not-affected | 4:4.4.6.1-1 |
| eoan | DNE | |
| esm-apps/bionic | not-affected | 4:4.4.6.1-1 |
| esm-apps/focal | not-affected | 4:4.4.6.1-1 |
| esm-apps/jammy | not-affected | 4:4.4.6.1-1 |
| esm-apps/noble | not-affected | 4:4.4.6.1-1 |
Показывать по
Ссылки на источники
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Multiple cross-site request forgery (CSRF) vulnerabilities in the setup process in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 allow remote attackers to hijack the authentication of administrators for requests that modify the configuration file.
Multiple cross-site request forgery (CSRF) vulnerabilities in the setu ...
Multiple cross-site request forgery (CSRF) vulnerabilities in the setup process in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 allow remote attackers to hijack the authentication of administrators for requests that modify the configuration file.
EPSS
6.8 Medium
CVSS2