phpMyAdmin gets patch for multiple vulnerabilities
Security releases phpMyAdmin 3.4.3.1 and 3.3.10.2 fix four critical vulnerabilities reported by Secunia.
Popular MySQL administration tool phpMyAdmin has received fixes for vulnerabilities that could allow attackers to inject and execute arbitrary code. Termed as security releases by the developers, the latest versions phpMyAdmin 3.4.3.1 and 3.3.10.2 patch critical vulnerabilities reported by security research firm Secunia.
UK IT Priorities 2018 survey results
Download this e-guide to discover the results of our 2018 UK IT Priorities survey, where IT leaders shared with us what they are going to be investing in over the coming 12 months.
By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.
phpMyAdmin versions prior to 3.3.10.2 and 3.4.3.1 are affected by these vulnerabilities. Secunia clarifies that branch 2.11.x of phpMyAdmin is not affected by the vulnerabilities. The developers recommend that all users using older phpMyAdmin versions immediately update to the new versions.
According to Secunia, the vulnerable phpMyAdmin functions include Swekey_login(),PMA_createTargetTables() and PMA_displayTableBody(). The firm also reported a setup script vulnerability that could allow arbitrary PHP code injection. More details about these vulnerabilities are available at the Secunia advisory.
Start the conversation
0 comments