This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The phpMyAdmin development team reports :
With a crafted database or table name it is possible to trigger an XSS
in SQL debug output when enabled and in server monitor page when
viewing and analysing executed queries.
This vulnerability can be triggered only by someone who is logged in
to phpMyAdmin, as the usual token protection prevents non-logged-in
users from accessing the required pages. Moreover, debugging SQL is a
developer option which is disabled by default and expected to be
disabled in production environments.
See also :
Update the affected package.
Risk factor :
Low / CVSS Base Score : 3.5