Apache Friends Support Forum


https://community.apachefriends.org/f/

BUG in phpmyadmin

https://community.apachefriends.org/f/viewtopic.php?f=16&t=78635

Page 1 of 1

BUG in phpmyadmin

PostPosted: 23. October 2019 10:26
by Abdallah
Hi ,

i have discovered a 0day vulnerability in phpmyadmin (CSRF) the action lead to delete any database or any table which i provide the name of the database or the tables .
where i should report about that ?

xampp version 3.2.4 and ,PHP version: 7.3.10

Re: BUG in phpmyadmin

PostPosted: 23. October 2019 15:38
by Altrea
Here: https://github.com/phpmyadmin/phpmyadmin/issues

Re: BUG in phpmyadmin

PostPosted: 23. October 2019 15:42
by Abdallah
Should i report about it via Github !?
And should I request CVE for it !?

Re: BUG in phpmyadmin

PostPosted: 23. October 2019 18:55
by Nobbie
I have no idea. This is the Xampp for WIndows support forum. I would ask at PhpMyAdmin if I were you.

Re: BUG in phpmyadmin

PostPosted: 28. October 2019 13:35
by Abdallah
thank you for helping me out with this , i have contact with security team for phpmyadmin and i have sent some information about the issue .

and they will take the necessary action for it
All times are UTC + 1 hour
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/