This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The phpMyAdmin development team reports :
XSRF/CSRF due to DOM based XSS in the micro history feature.
By deceiving a logged-in user to click on a crafted URL, it is
possible to perform remote code execution and in some cases, create a
root account due to a DOM based XSS vulnerability in the micro history
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 4.3