2019-11-22 20:32:52
mitre
PUBLISHED
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.