Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-12922)

Description

A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page.

Remediation

References

Related Vulnerabilities

WordPress Plugin moreAds SE Cross-Site Scripting (1.4.6)

GibbonEdu Session Fixation Vulnerability (CVE-2022-27305)

Oracle JRE CVE-2014-2414 Vulnerability (CVE-2014-2414)

Jboss EAP Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2018-1067)

SharePoint CVE-2022-24472 Vulnerability (CVE-2022-24472)

Severity

Medium

Classification

CVE-2019-12922 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities