An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4:4.5.4.1-2ubuntu2.1+esm3", "binary_name": "phpmyadmin" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4:4.6.6-5ubuntu0.5", "binary_name": "phpmyadmin" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4:4.9.2+dfsg1-1", "binary_name": "phpmyadmin" } ] }