phpMyAdmin 4.8.5 released with security fixes for multiple critical vulnerabilities and other major bug fixes.It is a free software tool that handles and handles the administration of MySQL databases.
If the AllowArbitraryServer is set to true with the server configuration, then an attacker with rogue MySQL server can read the files that web server user can access.
The vulnerability considered as critical and can be mitigated by setting AllowArbitraryServer configuration set to false.
phpMyAdmin from 4.0 through 4.8.4 are affected and it has been fixed with phpMyAdmin 4.8.5 or newer versions.
The vulnerability resides with the design feature, an attacker could exploit the vulnerability with a specially crafted username that could be used to trigger SQL injection attack.
The vulnerability considered to be serious and it affects versions from 4.5.0 through 4.8.4 and it has been fixed with phpMyAdmin 4.8.5 or newer versions.
Parrot Security OS 4.3 Released with Updates for Popular Hacking Tools and Linux Kernel Version
Gunra Ransomware, has surfaced as a formidable threat in April 2025, targeting Windows systems across…
Cybersecurity firm Sansec has uncovered a sophisticated supply chain attack that has compromised 21 popular…
The financially motivated threat group Venom Spider, also tracked as TA4557, has shifted its focus…
The Russian-based threat group RomCom, also known as Storm-0978, Tropical Scorpius, and Void Rabisu, has…
The Seqrite Labs APT team has uncovered a sophisticated cyber campaign by the Pakistan-linked Transparent…
The LUMMAC.V2 infostealer malware, also known as Lumma or Lummastealer, has emerged as a significant…