Releases: mehrwert/TYPO3-phpMyAdmin
phpMyAdmin for TYPO3 – 5.1.8
This release of EXT:phpMyAdmin for TYPO3 is a security and maintenance release to update pMA to latest version which includes vendor bugfixes.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15.9)
Includes vendor security fixes
PMASA-2016-58: Unsafe generation of $cfg['blowfish_secret']
PMASA-2016-59: phpMyAdmin's phpinfo functionality is removed
PMASA-2016-60: AllowRoot and allow/deny rule bypass with specially-crafted username
PMASA-2016-61: Username matching weaknesses with allow/deny rules
PMASA-2016-62: Possible to bypass logout timeout
PMASA-2016-63: Full path disclosure (FPD) weaknesses
PMASA-2016-64: Multiple XSS weaknesses
PMASA-2016-65: Multiple denial-of-service (DOS) vulnerabilities
PMASA-2016-66: Possible to bypass white-list protection for URL redirection
PMASA-2016-69: Multiple SQL injection vulnerabilities
PMASA-2016-70: Incorrect serialized string parsing
PMASA-2016-71: CSRF token not stripped from the URL
phpMyAdmin for TYPO3 – 5.1.7
This release of EXT:phpMyAdmin for TYPO3 is a security and maintenance release to update pMA to latest version which includes vendor bugfixes.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15.8)
Includes critical vendor security fixes
- PMASA-2016-56: Remote code execution vulnerability when PHP is running with dbase extension
- PMASA-2016-54: Remote code execution vulnerability when run as CGI
- PMASA-2016-52: ArbitraryServerRegexp bypass
- PMASA-2016-45: DOS attack with forced persistent connections
Includes serious vendor security fixes
- PMASA-2016-53: Denial of service (DOS) attack by changing password to a very long string
- PMASA-2016-47: IPv6 and proxy server IP-based authentication rule circumvention
- PMASA-2016-42: SQL injection attack as control user
- PMASA-2016-39: SQL injection attack
- PMASA-2016-37: Path traversal with SaveDir and UploadDir
- PMASA-2016-36: Local file exposure through symlinks with UploadDir
- PMASA-2016-35: Local file exposure
- PMASA-2016-34: SQL injection attack
- PMASA-2016-29: Weakness with cookie encryption
- PMASA-2016-22: DOS attack
- PMASA-2016-21: Multiple XSS vulnerabilities
Includes moderate vendor security fixes
- PMASA-2016-51: Reflected File Download attack
- PMASA-2016-50: Referrer leak in url.php
- PMASA-2016-49: Bypass URL redirect protection
- PMASA-2016-46: Denial of service (DOS) attack by for loops
- PMASA-2016-43: Unvalidated data passed to unserialize()
- PMASA-2016-32: PHP code injection
- PMASA-2016-30: Multiple XSS vulnerabilities
- PMASA-2016-28: Referrer leak in transformations
- PMASA-2016-27: Unsafe handling of preg_replace parameters
- PMASA-2016-26: Multiple XSS vulnerabilities
- PMASA-2016-23: Multiple full path disclosure vulnerabilities
- PMASA-2016-19: SQL injection attack
Includes non-critical vendor security fixes
- PMASA-2016-55: Denial of service (DOS) attack with dbase extension
- PMASA-2016-48: Detect if user is logged in
- PMASA-2016-41: Denial of service (DOS) attack in transformation feature
- PMASA-2016-38: Multiple XSS vulnerabilities
- PMASA-2016-33: Full path disclosure
- PMASA-2016-17: BBCode injection vulnerability
phpMyAdmin for TYPO3 – 5.1.6
This release of EXT:phpMyAdmin for TYPO3 is a security and maintenance release to update pMA to latest version which includes vendor bugfixes.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15.6)
- PMASA-2016-11: Multiple XSS vulnerabilities
- PMASA-2016-12: Multiple XSS vulnerabilities
- PMASA-2016-16: Self XSS
phpMyAdmin for TYPO3 – 5.1.5
This release of EXT:phpMyAdmin for TYPO3 is a security and maintenance release to update pMA to latest version which includes vendor bugfixes.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15.3)
- PMASA-2016-5: Unsafe comparison of XSRF/CSRF token
- PMASA-2015-6: Full path disclosure vulnerability
- PMASA-2016-1: Multiple full path disclosure vulnerabilities
- PMASA-2016-2: Unsafe generation of XSRF/CSRF token
- PMASA-2016-3: Multiple XSS vulnerabilities
- PMASA-2016-4: Insecure password generation in JavaScript
- PMASA-2016-6: Multiple full path disclosure vulnerabilities
- PMASA-2016-7: XSS vulnerability in normalization page
- Provide composer.json (thanks to André Wuttig for the contribution)
- Add CONTRIBUTING.md
phpMyAdmin for TYPO3 – 5.1.4
This release of EXT:phpMyAdmin for TYPO3 is a maintenance release to update pMA to latest version and set TYPO3 7.6 compatibility. Update version number in vendor path and Settings.xml.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15.1)
- Set TYPO3 7.6 compatibility
phpMyAdmin for TYPO3 – 5.1.3
This release of EXT:phpMyAdmin for TYPO3 is a maintenance release to update pMA to latest version and set TYPO3 7.6 compatibility.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15.1)
- Set TYPO3 7.6 compatibility
phpMyAdmin for TYPO3 – 5.1.2
This release of EXT:phpMyAdmin for TYPO3 is a feature release to update pMA to latest version and set TYPO3 7.5 compatibility.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.15)
- Set TYPO3 7.5 compatibility
phpMyAdmin for TYPO3 – 5.1.1
This release of EXT:phpMyAdmin for TYPO3 is a maintenance release to update pMA to latest version, fix #69298, remove deprecated settings and update documentation.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Fix wrong module path in config.inc.php - #69298
- Rename variable keys from typo_ to typo3_
- Update pMA to the latest stable 4.4.x release (4.4.14)
- Update settings and summary in ReadMe.md
- Remove deprecated pMA configuration options
- Mark 'only_db' broken in vendor package
phpMyAdmin for TYPO3 – 5.1.0
This release of EXT:phpMyAdmin for TYPO3 is a feature release to update pMA to latest version and set TYPO3 7.4 compatibility.
http://typo3.org/extensions/repository/view/phpmyadmin
Changes
- Update pMA to the latest stable 4.4.x release (4.4.13.1)
- Set TYPO3 7.4 compatibility
phpMyAdmin for TYPO3 – 5.0.1
This release of EXT:phpMyAdmin for TYPO3 is a bugfix release to fix a problem in TYPO3 6.2 module loading.
http://typo3.org/extensions/repository/view/phpmyadmin
Fixes
- Fix duplicate keys in module configuration if addModule() and conf.php use identical keys in TYPO3 v62. See https://forge.typo3.org/issues/68065
Changes
- Update documentation and add new screenshot and fix some spelling errors