vulnerability

FreeBSD: VID-AC7DA39B-4405-11E8-AFBE-6805CA0B3D42: phpmyadmin -- CSRF vulnerability allowing arbitrary SQL execution

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Apr 17, 2018
Added
Apr 19, 2018
Modified
Feb 19, 2025

Description



The phpMyAdmin development team reports:



Summary


CSRF vulnerability allowing arbitrary SQL execution


Description


By deceiving a user to click on a crafted URL, it is


possible for an attacker to execute arbitrary SQL


commands.


Severity


We consider this vulnerability to be critical.




Solution

freebsd-upgrade-package-phpmyadmin

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.