phpMyAdmin CVE-2018-10188 Cross Site Request Forgery Vulnerability
BID:103936
CVE-2018-10188 |Info
phpMyAdmin CVE-2018-10188 Cross Site Request Forgery Vulnerability
| Bugtraq ID: | 103936 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-10188 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 17 2018 12:00AM |
| Updated: | Apr 17 2018 12:00AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
phpMyAdmin phpMyAdmin 4.8 |
| Not Vulnerable: |
phpMyAdmin phpMyAdmin 4.8.0-1 |
Discussion
phpMyAdmin CVE-2018-10188 Cross Site Request Forgery Vulnerability
phpMyAdmin is prone to a cross-site request-forgery vulnerability because it does not properly validate HTTP requests.
Exploiting this issue may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
phpMyAdmin 4.8.0 is vulnerable; other versions may also be affected.
phpMyAdmin is prone to a cross-site request-forgery vulnerability because it does not properly validate HTTP requests.
Exploiting this issue may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.
phpMyAdmin 4.8.0 is vulnerable; other versions may also be affected.
Exploit / POC
phpMyAdmin CVE-2018-10188 Cross Site Request Forgery Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
phpMyAdmin CVE-2018-10188 Cross Site Request Forgery Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.