phpMyAdmin < 4.8.3 Vulnerability (PMASA-2018-5)
Medium Nessus Plugin ID 117334
SynopsisThe remote web server hosts a PHP application that is affected by a cross-site Scripting vulnerability.
DescriptionAccording to its self-reported version number, the phpMyAdmin application hosted on the remote web server is prior to 4.8.3. It is, therefore, affected by a cross-site Scripting vulnerability.
Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to phpMyAdmin version 4.8.3 or later.
Alternatively, apply the patch referenced in the vendor advisory.