Description
An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigger a remote code execution attack against certain PHP installations that are running with the dbase extension. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
Remediation
References
Related Vulnerabilities
IBM RTC Cross-site Scripting (XSS) Vulnerability (CVE-2020-4697)
Liferay Portal CVE-2022-45320 Vulnerability (CVE-2022-45320)
OpenSSL Other Vulnerability (CVE-2016-0797)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-2185)
OpenSSL Missing Encryption of Sensitive Data Vulnerability (CVE-2019-1563)