phpMyAdmin 4.8.5 released with security fixes for multiple critical vulnerabilities and other major bug fixes.It is a free software tool that handles and handles the administration of MySQL databases.
If the AllowArbitraryServer is set to true with the server configuration, then an attacker with rogue MySQL server can read the files that web server user can access.
The vulnerability considered as critical and can be mitigated by setting AllowArbitraryServer configuration set to false.
phpMyAdmin from 4.0 through 4.8.4 are affected and it has been fixed with phpMyAdmin 4.8.5 or newer versions.
The vulnerability resides with the design feature, an attacker could exploit the vulnerability with a specially crafted username that could be used to trigger SQL injection attack.
The vulnerability considered to be serious and it affects versions from 4.5.0 through 4.8.4 and it has been fixed with phpMyAdmin 4.8.5 or newer versions.
Parrot Security OS 4.3 Released with Updates for Popular Hacking Tools and Linux Kernel Version
Some router models have identified a security vulnerability that allows attackers to bypass authentication. To exploit this vulnerability, an attacker…
Hackers often target CrushFTP servers as they contain sensitive data and are used for file sharing and storage. This makes…
DDoS attacks are a significant and growing risk that can overpower websites, crash servers, and block out authorized users with…
Hackers have leveraged an old Microsoft Office vulnerability, CVE-2017-8570, to deploy the notorious Cobalt Strike Beacon, targeting systems in Ukraine.…
In a historic move, Microsoft has made the source code for MS-DOS 4.0, one of the most influential operating systems…
A new attack campaign has been discovered to be employed by the FROZEN#SHADOW, which utilized SSLoad malware for its operations…