Description
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.
Remediation
References
Related Vulnerabilities
WordPress Plugin BigDoor Quick Gamification for WordPress Cross-Site Scripting (1.0.5)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4309)
WordPress Plugin Duplicator-WordPress Migration Remote Code Execution (1.2.40)
MOVEit Transfer Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-13147)