phpMyAdmin 4.2.13.1
更新細節:
* [security] XSS vulnerability in redirection mechanism
* [security] DOS attack with long passwords
版本下載:phpMyAdmin 4.2.13.1
phpMyAdmin 4.2.13
更新細節:
* Query history not being deleted
* db/table query string parameters no longer work
* Unseen messages in tracking
* Tracking report export as SQL dump does not work
* Syntax error during db_copy operation
* SELECT permission issues with relations and restricted access
版本下載:phpMyAdmin 4.2.13
phpMyAdmin 4.2.12
更新細節:
# Fixes -
- Blank/white page when JavaScript disabled
- Multi row actions cause full page reloads
- ReferenceError: targeurl is not defined
- Incorrect text/icon display in Tracking report
- Recordset return from procedure display nothing
- Edit dialog for routines is too long for smaller displays
- Javascript error after moving a column
- Issue with long comments on table columns
- Input field unnecessarily selected on focus
- Exporting selected rows exports all rows of the query
- No insert statement produced in SQL export for queries with alias
- Field disabled when internal relations used
- [security] XSS through exception stack
- [security] Path traversal can lead to leakage of line count
- [security] XSS vulnerability in table print view
- [security] XSS vulnerability in zoom search page
- [security] Path traversal in file inclusion of GIS factory
- [security] XSS in multi submit
- [security] XSS through pma_fontsize cookie
版本下載:phpMyAdmin 4.2.12
phpMyAdmin 4.2.11
更新細節:
* ReferenceError: Table_onover is not defined
* Incorrect routines display for database due to case insensitive checks
* reCaptcha sound session expired problem
* PHP fatal error, undefined function __()
* Date displayed incorrectly when charting a timeline
* Database Privileges link does not work
* bug makegrid.js: where_clause is undefined
* bug #4572 missing trailing slash (import and open_basedir)
版本下載:phpMyAdmin 4.2.11
phpMyAdmin 4.2.10.1
更新細節:
- [security] XSS in debug SQL output
- [security] XSS in monitor query analyzer
版本下載:phpMyAdmin 4.2.10.1
phpMyAdmin 4.2.10
更新細節:
- Can't change font size (when config.inc.php not present)
- Tab key in column name not shown
- PDF export: title not present in PDF
- Changing column name can break saved "order by" clause
- trying to favorite table while browser localStorage is disabled throws JS error
- reCaptcha sound session expired problem
- Inline editing a field converts tab to spaces
- Database-level permission bug for db names containing underscores
- Events are not exported when using xml
- Grid-editing timestamp column forces datepicker
- Fast filters for tables, views etc. should be governed by Navigation TreeDisplayItemFilterMinimum
版本下載:phpMyAdmin 4.2.10
phpMyAdmin 4.2.9.1
更新細節:
- [security] XSS vulnerabilities in table search and table structure pages
版本下載:phpMyAdmin 4.2.9.1
phpMyAdmin 4.2.9
更新細節:
- ajax.js responseHandler: cannot read property of null
- sql.js: str is undefined
- Allow for direct selection of "0" on the "user overview" page
- Undefined index: pos
- tbl_change.js: insert as new row submit type on multiple selected records does not set all AUTO_INCREMENTs to 0 value
- ajax.js responseHandler: another "cannot read property"
- tbl_structure.js "cannot read property"
版本下載:phpMyAdmin 4.2.9
phpMyAdmin 4.2.8.1
更新細節:
- [security] DOM based XSS that results to a CSRF that creates a ROOT account in certain conditions
版本下載:phpMyAdmin 4.2.8.1
phpMyAdmin 4.2.8
更新細節:
# Bugfix
- Odd export behavior
- Uncaught TypeError: Cannot read property 'success' of null
- sql.js: cannot read property
- Initially allowed chart types do not match selected data
- Export to SQL: CREATE TABLE option AUTO_INCREMENT ignored
- Duplicate column names while assigning index
- Export of partitioned table does not import
- server_privileges.js: cannot read property
- Importing ODS files with column names having trailing spaces fails
- Navigation Error in Nav Tree for Search Results Past the First Page
- functions.js: Cannot read property 'replace' of undefined
版本下載:phpMyAdmin 4.2.8
phpMyAdmin 4.2.7.1
更新細節:
- [security] XSS in table browse page
- [security] Self-XSS in enum value editor
- [security] Self-XSSes in monitor
- [security] Self-XSS in query charts
- [security] XSS in view operations page
- [security] XSS in relation view
版本下載:phpMyAdmin 4.2.7.1
phpMyAdmin 4.2.7
更新細節:
# Bug Fixes -
- Broken links on home page
- Overlap in navigation panel
- Action icons not in horizontal order
- s_attention.png is missing
- Uncaught TypeError: Cannot call method 'substr' of undefined
- PMA 4.2.x and HHVM
- mysql_doc_template is not defined
版本下載:phpMyAdmin 4.2.7
phpMyAdmin 4.2.6
更新細節:
- Undefined index warning with referenced column.
- $cfg['MaxExactCount'] is ignored when BROWSING is back
- Multi Column sorting (improved user experience)
- Server validation does not work while in setup/mysqli
- Undefined variable when grid editing a foreign key column
- mult_submits.inc.php Undefined variable Error
- Sorting breaks the copy column feature
- Javascript error when renaming table
- 'New window' link (selflink) disappears, causing Javascript error
- Incorrect detection of privileges for routine creation
- First few characters of database name aren't clickable when expanded
- [security] XSS injection due to unescaped table comment
- [security] XSS injection due to unescaped table name (triggers)
- [security] XSS in AJAX confirmation messages
- [security] Missing validation for accessing User groups feature
版本下載:phpMyAdmin 4.2.6
phpMyAdmin 4.2.5
更新細節:
- shell_exec() has been disabled for security reasons
- Error while submitting empty query
- Fatal error: Class 'PMA_DatabaseInterface' not found
- Fixed cookie based login for installations without mcrypt
- incorrect result count when having clause is used
- mcrypt: remove the requirement (64-bit) and the related warning
版本下載:phpMyAdmin 4.2.5
phpMyAdmin 4.2.4
更新細節:
- Mediawiki export does not produce table header row; also fix related PHP warnings
- New lines are added to query every time
- Fatal error on SQL Export of join query
- Dump binary columns in hexadecimal notation not working
- Regenerate cookie encryption IV for every session
- Cannot import (open_basedir): fix another case
- SQL tab - Insert queries not showing affected row count
- Missing warning about existing account, on multi-server config
- WHERE clause can be undefined
- SQL export views as tables option getting ignored
- [security] XSS injection due to unescaped db/table name in navigation hiding
- [security] XSS injection due to unescaped db/table name in recent/favorite tables
版本下載:phpMyAdmin 4.2.4