MGASA-2019-0057

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2019-0057.html
Import Source
https://advisories.mageia.org/MGASA-2019-0057.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2019-0057
Published
2019-01-30T19:39:18Z
Modified
2026-04-16T04:26:33.133761Z
Summary
Updated phpmyadmin packages fix security vulnerabilities
Details
  • Possible SQL injection in Designer feature
  • When AllowArbitraryServer configuration set to true, with the use of a rogue MySQL server, an attacker can read any file on the server that the web server's user can access.
References
Credits

Affected packages

Mageia:6 / phpmyadmin

Package

Name
phpmyadmin
Purl
pkg:rpm/mageia/phpmyadmin?arch=source&distro=mageia-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.7.8-4.mga6

Ecosystem specific 

{
    "section": "core"
}

Database specific

source 
"https://advisories.mageia.org/MGASA-2019-0057.json"