An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query.
External References: https://www.phpmyadmin.net/security/PMASA-2020-6/
Created phpMyAdmin tracking bugs for this issue: Affects: epel-all [bug 1887255] Affects: fedora-all [bug 1887254]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.