2016-05-26
The phpMyAdmin project is announcing a series of non-critical security advisories, including the release of version 4.4.15.6.
PMASA-2016-14 - Sensitive Data in URL GET Query Parameters. See https://www.phpmyadmin.net/security/PMASA-2016-14/ for more details.
PMASA-2016-15 - File Traversal Protection Bypass on Error Reporting. See https://www.phpmyadmin.net/security/PMASA-2016-15/ for more details.
PMASA-2016-16 - Self XSS. See https://www.phpmyadmin.net/security/PMASA-2016-16/ for more details.
Versions 4.6.2 and 4.4.15.6 have been released today including fixes for these.