Frans Pehrson

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 3.x prior to 3.3.10.2 phpMyAdmin versions 3.4.x prior to 3.4.3.1 **Description** The Swekey authentication feature in phpMyAdmin assigns values to arbitrary parameters referenced in the query string, allowing remote attackers to modify the `SESSION` superglobal array via a crafted request. This issue is related to a remote variable manipulation vulnerability. **Recommendations** For phpMyAdmin versions 3.x prior to 3.3.10.2, update to version 3.3.10.2 or later. For phpMyAdmin versions 3.4.x prior to 3.4.3.1, update to version 3.4.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 3.x through 3.3.10.1 phpMyAdmin versions 3.4.x through 3.4.3.0 **Description** The issue allows remote attackers to conduct static code injection attacks by leveraging the ability to modify the SESSION superglobal array, due to the improper restriction of comment closing delimiters in the `setup/lib/ConfigGenerator.class.php` file. **Recommendations** For phpMyAdmin versions 3.x through 3.3.10.1, update to version 3.3.10.2 or later. For phpMyAdmin versions 3.4.x through 3.4.3.0, update to version 3.4.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 3.x prior to 3.3.10.2 phpMyAdmin versions 3.4.x prior to 3.4.3.1 **Description** The issue is related to the Synchronize implementation in phpMyAdmin, where the `libraries/server synchronize.lib.php` file does not properly quote regular expressions. This allows remote authenticated users to inject a PCRE e (aka PREG REPLACE EVAL) modifier, which can lead to the execution of arbitrary PHP code. The exploitation is possible by modifying the SESSION superglobal array. **Recommendations** For phpMyAdmin versions 3.x prior to 3.3.10.2, update to version 3.3.10.2 or later. For phpMyAdmin versions 3.4.x prior to 3.4.3.1, update to version 3.4.3.1 or later.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 3.x prior to 3.3.10.2 phpMyAdmin versions 3.4.x prior to 3.4.3.1 **Description** The issue allows remote authenticated users to include and execute arbitrary local files. This is possible when a certain MIME transformation feature is enabled. The vulnerability can be exploited via a .. (dot dot) in a `GLOBALS[mime map][$meta->name][transformation]` parameter. **Recommendations** For phpMyAdmin versions 3.x prior to 3.3.10.2, update to version 3.3.10.2 or later. For phpMyAdmin versions 3.4.x prior to 3.4.3.1, update to version 3.4.3.1 or later. As a temporary workaround, consider disabling the MIME transformation feature until a patch is available.