phpMyAdmin 4.7.x and 4.8.x versions prior to 4.8.4 are affected by a series of CSRF flaws. By deceiving a user into clicking on a crafted URL, it is possible to perform harmful SQL operations such as renaming databases, creating new tables/routines, deleting designer pages, adding/deleting users, updating user passwords, killing SQL processes, etc.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2018-12-11T17:00:00

Updated: 2024-08-05T11:51:17.881Z

Reserved: 2018-12-07T00:00:00

Link: CVE-2018-19969

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-12-11T17:29:00.273

Modified: 2024-11-21T03:58:54.770

Link: CVE-2018-19969

cve-icon Redhat

No data.