default PhpMyAdmin version is unsecure

cPanelDon

cPanel Quality Assurance Analyst
Staff member
Nov 5, 2008
2,545
12
268
Houston, Texas, U.S.A.
cPanel Access Level
DataCenter Provider
Twitter
Hello!
as you can see in title, the default version(2.11.9.5) of PhpMyAdmin is unsecure.
you can see that this versions is affected by XSS inj vulnerability here:
phpMyAdmin - Security - PMASA-2009-6
An immediate resolution is to upgrade to the latest cPanel version 11.25 that is not affected by this issue.

As of the time of writing cPanel version 11.25 uses phpMyAdmin versions 2.11.9.6 and 3.2.3 (which one of these depends on the MySQL version installed); these versions are included in both the latest EDGE and CURRENT builds and will also be included in the upcoming cPanel version 11.25 builds of RELEASE and STABLE.
 

cPanelDon

cPanel Quality Assurance Analyst
Staff member
Nov 5, 2008
2,545
12
268
Houston, Texas, U.S.A.
cPanel Access Level
DataCenter Provider
Twitter