Fetching the version information from a non-SSL site is vulnerable to a MITM attack.
We consider this vulnerability to be non critical.
Versions 3.5.x before 3.5.3 are affected.
Thanks to Mike Cardwell for reporting this issue and suggesting workarounds.
Assigned CVE ids: CVE-2012-5368
The following commits have been made to fix this issue:
For further information and in case of questions, please contact the phpMyAdmin team. Our website is phpmyadmin.net.