Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

phpMyAdmin 4.3.x < / 4.4.x < reCaptcha Bypass (PMASA-2015-4)



The remote web server contains a PHP application that is affected by a captcha bypass vulnerability.


Versions of phpMyAdmin 4.3.x prior to or 4.4.x prior to are unpatched for by a security bypass vulnerability related to reCaptcha processing. An unauthenticated, remote attacker can exploit this to bypass the reCaptcha test, resulting in a bypass of brute-force protection.


Upgrade to phpMyAdmin / or later. Alternatively, apply the patch referenced in the vendor advisory.