CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
Percentile
64.8%
Announcement-ID: PMASA-2011-4
Date: 2011-05-22
URL redirection to untrusted site.
It was possible to redirect to an arbitrary, untrusted site, leading to a possible phishing attack.
We consider this vulnerability to be serious.
The 3.4.0 version is affected.
Older releases than 3.4.0 are not affected.
Upgrade to phpMyAdmin 3.4.1 or apply the related patch listed below.
This issue was found by Kian Mohageri.
Assigned CVE ids: CVE-2011-1941
The following commits have been made to fix this issue:
For further information and in case of questions, please contact the phpMyAdmin team. Our website is phpmyadmin.net.