E3Amn2L

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin (affected versions not specified) **Description** A weakness was discovered that allows an attacker to inject arbitrary values into the browser cookies. This issue is a re-issue of an incomplete fix from a previous problem. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.4.x through 4.4.15.8 phpMyAdmin versions 4.6.x through 4.6.4 **Description** An issue in phpMyAdmin allows it to display a PHP error message containing the full path of the directory where phpMyAdmin is installed when certain scripts are called in an unexpected way. Additionally, during an execution timeout in the export functionality, errors with the full path are written to the export file. **Recommendations** For phpMyAdmin versions 4.4.x through 4.4.15.8, update to version 4.4.15.9 or later. For phpMyAdmin versions 4.6.x through 4.6.4, update to version 4.6.5 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.0 through 4.6.4 **Description** An issue in the table partitioning function allows for a Denial of Service (DoS) attack to be invoked with a very large request. **Recommendations** For versions 4.6.0 through 4.6.4, update to version 4.6.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.4.x through 4.4.15.8 phpMyAdmin versions 4.6.x through 4.6.4 **Description** An issue in phpMyAdmin allows it to display a PHP error message containing the full path of the directory where phpMyAdmin is installed when certain scripts are called in an unexpected way. Additionally, during an execution timeout in the export functionality, errors with the full path are written to the export file. **Recommendations** For phpMyAdmin versions 4.4.x through 4.4.15.8, update to version 4.4.15.9 or later. For phpMyAdmin versions 4.6.x through 4.6.4, update to version 4.6.5 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.4.x through 4.4.15.8 phpMyAdmin versions 4.6.x through 4.6.4 **Description** An issue in phpMyAdmin allows it to display a PHP error message containing the full path of the directory where phpMyAdmin is installed when certain scripts are called in an unexpected way. Additionally, during an execution timeout in the export functionality, errors with the full path are written to the export file. **Recommendations** For phpMyAdmin versions 4.4.x through 4.4.15.8, update to version 4.4.15.9 or later. For phpMyAdmin versions 4.6.x through 4.6.4, update to version 4.6.5 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.x prior to 4.6.5 phpMyAdmin versions 4.4.x prior to 4.4.15.9 **Description** An issue was discovered that allows bypassing the logout timeout with a crafted request parameter value. **Recommendations** For versions 4.6.x prior to 4.6.5, update to version 4.6.5 or later. For versions 4.4.x prior to 4.4.15.9, update to version 4.4.15.9 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.4.x through 4.4.15.8 phpMyAdmin versions 4.6.x through 4.6.4 **Description** An issue in phpMyAdmin allows it to display a PHP error message containing the full path of the directory where phpMyAdmin is installed when certain scripts are called in an unexpected way. Additionally, during an execution timeout in the export functionality, errors with the full path are written to the export file. **Recommendations** For phpMyAdmin versions 4.4.x through 4.4.15.8, update to version 4.4.15.9 or later. For phpMyAdmin versions 4.6.x through 4.6.4, update to version 4.6.5 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.x prior to 4.6.5 **Description** An issue was discovered that allows injection of BBCode in the login page with a crafted login request. **Recommendations** For versions prior to 4.6.5, update to version 4.6.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.0 through 4.6.3 **Description** An issue was discovered that allows a specially crafted database and/or table name to trigger an SQL injection attack through the export functionality. **Recommendations** For versions 4.6.0 through 4.6.3, update to version 4.6.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.x prior to 4.6.4 phpMyAdmin versions 4.4.x prior to 4.4.15.8 **Description** XSS issues were discovered in phpMyAdmin, affecting the navigation pane and database/table hiding feature, the Tracking feature, and the GIS visualization feature. An attacker can trigger an XSS attack using a specially-crafted database name or query. **Recommendations** For phpMyAdmin versions 4.6.x prior to 4.6.4, update to version 4.6.4 or later. For phpMyAdmin versions 4.4.x prior to 4.4.15.8, update to version 4.4.15.8 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.x prior to 4.6.4 phpMyAdmin versions 4.4.x prior to 4.4.15.8 **Description** An issue was discovered in the "User group" and "Designer" features of phpMyAdmin, allowing a user to execute an SQL injection attack against the account of the control user. **Recommendations** For versions 4.6.x prior to 4.6.4, update to version 4.6.4 or later. For versions 4.4.x prior to 4.4.15.8, update to version 4.4.15.8 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.x prior to 4.6.4 **Description** XSS issues were discovered in the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. **Recommendations** For versions prior to 4.6.4, update to version 4.6.4 or later to resolve the issue. As a temporary workaround, consider restricting the creation of specially crafted database names to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WordPress versions prior to 4.5 **Description** The issue allows remote attackers to bypass an intended SSRF protection mechanism via a crafted address, as WordPress does not consider octal and hexadecimal IP address formats when determining an intranet address. **Recommendations** For WordPress versions prior to 4.5, update to version 4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to internal network resources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WordPress versions prior to 4.5 **Description** A cross-site request forgery (CSRF) issue exists in the `wp ajax wp compression test` function, located in `wp-admin/includes/ajax-actions.php`, allowing remote attackers to hijack administrator authentication for requests that modify the script compression option. **Recommendations** For versions prior to 4.5, update to version 4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the `wp-admin/includes/ajax-actions.php` file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WordPress versions prior to 4.5 **Description** A cross-site scripting (XSS) issue exists in the network settings page, allowing remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions prior to 4.5, update to version 4.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.x before 4.6.3 **Description** The issue allows remote attackers to conduct cookie-attribute injection attacks via a crafted URI when the environment lacks a PHP SELF value. **Recommendations** For phpMyAdmin versions 4.6.x before 4.6.3, update to version 4.6.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.6.0 through 4.6.2 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via crafted table parameters in the partition-range implementation in the table-structure page. This is due to multiple cross-site scripting (XSS) vulnerabilities in the `templates/table/structure/display partitions.phtml` file. **Recommendations** For phpMyAdmin versions 4.6.0 through 4.6.2, update to version 4.6.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.4.x through 4.4.15.6 phpMyAdmin versions 4.6.x through 4.6.2 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via several vectors, including server-privileges certificate data fields on the user privileges page, an "invalid JSON" error message in the error console, a database name in the central columns implementation, a group name, or a search name in the bookmarks implementation. **Recommendations** For phpMyAdmin versions 4.4.x through 4.4.15.6, update to version 4.4.15.7 or later. For phpMyAdmin versions 4.6.x through 4.6.2, update to version 4.6.3 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.4.x through 4.4.15.4 phpMyAdmin versions 4.5.x through 4.5.5.0 **Description** The issue allows remote authenticated users to inject arbitrary web script or HTML. This can be achieved via several pages, including the database normalization page, which includes `normalization.php` or `js/normalization.js`, the database structure page, which includes `templates/database/structure/sortable header.phtml`, or the central columns page by manipulating the `pos` parameter to `db central columns.php`. **Recommendations** For phpMyAdmin versions 4.4.x through 4.4.15.4, update to version 4.4.15.5 or later. For phpMyAdmin versions 4.5.x through 4.5.5.0, update to version 4.5.5.1 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 4.5.x through 4.5.5.0 **Description** A cross-site scripting (XSS) issue exists in the SQL parser of phpMyAdmin, allowing remote authenticated users to inject arbitrary web script or HTML via a crafted query. This is due to a vulnerability in the format function in libraries/sql-parser/src/Utils/Error.php. **Recommendations** For phpMyAdmin versions 4.5.x through 4.5.5.0, update to version 4.5.5.1 or later to resolve the issue.