1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

default PhpMyAdmin version is unsecure

Discussion in 'Security' started by Scolpy, Dec 3, 2009.

  1. Scolpy

    Scolpy New Member

    Joined:
    Nov 6, 2009
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    1
    Hello!
    as you can see in title, the default version(2.11.9.5) of PhpMyAdmin is unsecure.
    you can see that this versions is affected by XSS inj vulnerability here:
    phpMyAdmin - Security - PMASA-2009-6

     
  2. cPanelDon

    cPanelDon cPanel Quality Assurance Analyst
    Staff Member

    Joined:
    Nov 5, 2008
    Messages:
    2,558
    Likes Received:
    6
    Trophy Points:
    38
    Location:
    Houston, Texas, U.S.A.
    An immediate resolution is to upgrade to the latest cPanel version 11.25 that is not affected by this issue.

    As of the time of writing cPanel version 11.25 uses phpMyAdmin versions 2.11.9.6 and 3.2.3 (which one of these depends on the MySQL version installed); these versions are included in both the latest EDGE and CURRENT builds and will also be included in the upcoming cPanel version 11.25 builds of RELEASE and STABLE.
     
  3. mghq

    mghq New Member

    Joined:
    Dec 15, 2009
    Messages:
    16
    Likes Received:
    0
    Trophy Points:
    1
    My cpanel is 11.24 how would i go about upgrading
     
  4. cPanelDon

    cPanelDon cPanel Quality Assurance Analyst
    Staff Member

    Joined:
    Nov 5, 2008
    Messages:
    2,558
    Likes Received:
    6
    Trophy Points:
    38
    Location:
    Houston, Texas, U.S.A.

Share This Page