FreeBSD : phpmyadmin -- CSRF vulnerabilities (2ecd02e2-e864-11da-b9f4-00123ffe8333)
High Nessus Plugin ID 21577
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionphpMyAdmin security team reports :
It was possible to inject arbitrary SQL commands by forcing an authenticated user to follow a crafted link.
Such issue is quite common in many PHP applications and users should take care what links they follow. We consider these vulnerabilities to be quite dangerous.
SolutionUpdate the affected package.