Description
libraries/session.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 does not properly generate CSRF token values, which allows remote attackers to bypass intended access restrictions by predicting a value.
Remediation
References
Related Vulnerabilities
Joomla! Core 3.x.x Cross-Site Scripting (3.1.2 - 3.2.2)
RubyGems Cryptographic Issues Vulnerability (CVE-2013-4287)
Vanilla Forums Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000432)
OpenSSL Cryptographic Issues Vulnerability (CVE-2013-6450)
WordPress Plugin Migration, Backup, Staging-WPvivid Security Bypass (0.9.35)