Description
An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another malicious site. The attacker must sniff the user's valid phpMyAdmin token. All 4.0.x versions (prior to 4.0.10.16) are affected.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2012-5074 Vulnerability (CVE-2012-5074)
WordPress Plugin Request Quote via Whatsapp for Woocommerce Cross-Site Scripting (1.0.1)
WordPress Plugin DethemeKit For Elementor Multiple Cross-Site Scripting Vulnerabilities (1.5.5.4)
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2020-1439)
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-7930)