Description

phpMyAdmin before 4.9.2 does not escape certain Git information, related to libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php.

Remediation

References

CVE-2019-19617

Related Vulnerabilities

WordPress Plugin Ad Swapper Cross-Site Scripting (1.0.3)

MySQL Improper Privilege Management Vulnerability (CVE-2017-3257)

Moodle Numeric Errors Vulnerability (CVE-2011-4305)

WordPress Plugin Super Logos Showcase for WordPress Arbitrary File Upload (2.2)

Liferay DXP Other Vulnerability (CVE-2024-25150)

Severity

Critical

Classification

CVE-2019-19617 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities