The remote FreeBSD host is missing one or more security-related updates.
The phpMyAdmin development team reports : XSS due to unescaped HTML Output when executing a SQL query. 5 XSS vulnerabilities in setup, chart display, process list, and logo link. If a crafted version.json would be presented, an XSS could be introduced. Full path disclosure vulnerabilities. XSS vulnerability when a text to link transformation is used. Self-XSS due to unescaped HTML output in schema export. SQL injection vulnerabilities, producing a privilege escalation (control user).