{"affected":[{"ecosystem_specific":{"binaries":[{"phpMyAdmin":"4.9.6-bp152.2.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12","name":"phpMyAdmin","purl":"pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.9.6-bp152.2.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"phpMyAdmin":"4.9.6-bp152.2.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP1","name":"phpMyAdmin","purl":"pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.9.6-bp152.2.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"phpMyAdmin":"4.9.6-bp152.2.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15 SP2","name":"phpMyAdmin","purl":"pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.9.6-bp152.2.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"phpMyAdmin":"4.9.6-bp152.2.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"phpMyAdmin","purl":"pkg:rpm/opensuse/phpMyAdmin&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.9.6-bp152.2.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"phpMyAdmin":"4.9.6-bp152.2.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.2","name":"phpMyAdmin","purl":"pkg:rpm/opensuse/phpMyAdmin&distro=openSUSE%20Leap%2015.2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.9.6-bp152.2.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for phpMyAdmin fixes the following issues:\n\n- phpMyAdmin was updated to 4.9.6\n   * CVE-2020-26934: Fixed an XSS relating to the transformation feature (boo#1177561).\n   * CVE-2020-26935: Fixed an SQL injection in SearchController (boo#1177562).\n","id":"openSUSE-SU-2020:1675-1","modified":"2020-10-16T12:23:05Z","published":"2020-10-16T12:23:05Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IQ7OUJYMDUNUBPRBTEK6DBC7JLFD3ZZA/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177561"},{"type":"REPORT","url":"https://bugzilla.suse.com/1177562"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-26934"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-26935"}],"related":["CVE-2020-26934","CVE-2020-26935"],"summary":"Security update for phpMyAdmin","upstream":["CVE-2020-26934","CVE-2020-26935"]}