A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to the application not properly sanitising configuration parameters during the setup procedure. This can be exploited to inject arbitrary PHP code into the phpMyAdmin configuration file.
NOTE: Successful exploitation requires that installation best-practices have not been followed and the setup scripts have not been deleted after a successful installation.
The vulnerability is reported in versions prior to 220.127.116.11.
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to email@example.com