The latest release (3.4.1 and 188.8.131.52) of the open source phpMyAdmin has primarily been a critical security release to address four security issues raised to the security team, and are critical issues around security, permissions, and redirection.
The security release addresses the following issues specifically:
- PMASA-2011-1 Path disclosure when certain files have been removed
- PMASA-2011-2 SQL Query could be executed under another user
- PMASA-2011-3 Cross-site-Scripting (XSS) Vulnerability on Tracking Page
- PMASA-2011-4 URL redirection to untrusted site issue
If you use this free software, you are strongly recommended to upgrade immediately.
We think you'd also like: