PhpMyAdmin released a new version, 3.4.4 and 18.104.22.168.
Including a security fix for a bunch of XSS vulns concerning the Tracking-Feature .
Because they did not include the link to my advisory, I’ll make them available here. Enjoy
- http://fd.the-wildcat.de/pma_e36aa9e2e0.php – phpMyAdmin – Tracking – XSS
- And, as always thanks to the phpMyAdmin Security-Team for the prompt reaction