{"id":"MGASA-2017-0038","summary":"Updated phpmyadmin packages fix security vulnerabilities","details":"Multiple vulnerabilities in setup script (CVE-2016-6621 / PMASA-2016-44).\n\nOpen redirect (PMASA-2017-1).\n\nphp-gettext code execution (CVE-2015-8980 / PMASA-2017-2).\n\nDOS vulnerability in table editing (PMASA-2017-3).\n\nCSS injection in themes (PMASA-2017-4).\n\nSSRF in replication (PMASA-2017-6).\n\nDOS in replication status (PMASA-2017-7).\n","modified":"2026-04-16T01:46:09.122564081Z","published":"2017-02-03T21:39:38Z","upstream":["CVE-2015-8980","CVE-2016-6621"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2017-0038.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=20169"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2016-44/"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2017-1/"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2017-2/"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2017-3/"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2017-4/"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2017-6/"},{"type":"WEB","url":"https://www.phpmyadmin.net/security/PMASA-2017-7/"},{"type":"WEB","url":"https://www.phpmyadmin.net/files/4.4.15.10/"},{"type":"WEB","url":"https://www.phpmyadmin.net/news/2017/1/23/phpmyadmin-466-441510-and-401019-are-released/"},{"type":"WEB","url":"https://lists.opensuse.org/opensuse-updates/2017-02/msg00015.html"}],"affected":[{"package":{"name":"phpmyadmin","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/phpmyadmin?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.4.15.10-1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2017-0038.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}