FreeBSD : phpMyAdmin -- Risk of BREACH attack due to reflected parameter (81b4c118-c586-11e4-8495-6805ca0b3d42)
Medium Nessus Plugin ID 81683
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionThe phpMyAdmin development team reports :
Risk of BREACH attack due to reflected parameter.
With a large number of crafted requests it was possible to infer the CSRF token by a BREACH attack.
SolutionUpdate the affected package.