VDB

GCVE-110-MAGEIA-2015-232

GCVE-110-MAGEIA-2015-232
Advisory Published
Vulnetix · Advisory published May 18, 2015
Updated phpmyadmin package fixes security vulnerabilities: In phpMyAdmin before 4.2.13.3, by deceiving a user to click on a crafted URL, it is possible to alter the configuration file being generated with phpMyAdmin setup (CVE-2015-3902). In phpMyAdmin before 4.2.13.3, a vulnerability in the API call to GitHub can be exploited to perform a man-in-the-middle attack (CVE-2015-3903). With this update, the phpmyadmin package has been updated to the 4.2 branch, which has some additional changes and new features. The 4.1 branch is no longer supported.

Affected Products

VendorProductVersionsPlatforms
Mageiaphpmyadmin0 (affected), 4.2.13.3-1.mga4 (unaffected)

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›