CVE-2015-3902

EPSS 0.22%

發布日:2015/5/26修改日:2026/5/7

也稱為:DEBIAN-CVE-2015-3902

描述

Multiple cross-site request forgery (CSRF) vulnerabilities in the setup process in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 allow remote attackers to hijack the authentication of administrators for requests that modify the configuration file.

受影響套件(1)

Debian/phpmyadminfrom 0, < 4:4.4.6.1-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-3902