Description

phpMyAdmin before 4.9.2 does not escape certain Git information, related to libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php.

Remediation

References

CVE-2019-19617

Related Vulnerabilities

PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5288)

WordPress Plugin WP Google Maps Cross-Site Scripting (7.10.41)

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-4475)

Oracle JRE CVE-2013-5817 Vulnerability (CVE-2013-5817)

WordPress Plugin Gantry 4 Framework Remote Command Execution (4.1.3)

Severity

Critical

Classification

CVE-2019-19617 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities