This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing a security update.
Multiple vulnerabilities has been discovered and corrected in
libraries/common.inc.php in phpMyAdmin 4.0.x before 220.127.116.11, 4.1.x
before 18.104.22.168, and 4.2.x before 22.214.171.124 allows remote attackers to
cause a denial of service (resource consumption) via a long password
Cross-site scripting (XSS) vulnerability in the redirection feature in
url.php in phpMyAdmin 4.2.x before 126.96.36.199 allows remote attackers to
inject arbitrary web script or HTML via the url parameter
This upgrade provides the latest phpmyadmin version (188.8.131.52) to
address these vulnerabilities.
See also :
Update the affected phpmyadmin package.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : false