Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)

Thu. 10th March, 2016

It has been discovered that the extension "phpMyAdmin" (phpmyadmin) is susceptible to unsafe comparison of XSRF/CSRF token, multiple full path disclosure vulnerabilities, multiple XSS vulnerabilities, insecure password generation in JavaScript.


This is a companion discussion topic for the original entry at https://typo3.org/article/typo3-ext-sa-2016-007