phpMyAdmin 4.7.x and 4.8.x versions prior to 4.8.4 are affected by a series of CSRF flaws. By deceiving a user into clicking on a crafted URL, it is possible to perform harmful SQL operations such as renaming databases, creating new tables/routines, deleting designer pages, adding/deleting users, updating user passwords, killing SQL processes, etc.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-12-11T17:00:00
Updated: 2024-08-05T11:51:17.881Z
Reserved: 2018-12-07T00:00:00
Link: CVE-2018-19969
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-12-11T17:29:00.273
Modified: 2024-11-21T03:58:54.770
Link: CVE-2018-19969
Redhat
No data.