Description

phpMyAdmin before 4.9.2 does not escape certain Git information, related to libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php.

Remediation

References

CVE-2019-19617

Related Vulnerabilities

WordPress Plugin bbPress Move Topics PHP Object Injection (1.1.4)

Oracle Database Server CVE-2007-5520 Vulnerability (CVE-2007-5520)

WordPress Plugin YITH WooCommerce Product Add-Ons Cross-Site Scripting (2.2.2)

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-7233)

phpMyFAQ Improper Authentication Vulnerability (CVE-2023-0311)

Severity

Critical

Classification

CVE-2019-19617 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities