IT Security Stack Exchange
IT Security Stack Exchange

Questions tagged [phpmyadmin]

phpMyAdmin is a MySQL client web interface written in PHP.

7 questions
3
votes
1 answer

protection from Backdoor hacks from disgruntled developer/ employee

I created a ecommerce site with a developer. He completed almost all his work but in the end we had some financial disagreements so our partnership ended in a bitter dispute. That developer threatened to hack my site using a backdoor. To cut long…
jack
  • 59
  • 2
2
votes
1 answer

What does the URL token do in phpMyAdmin if it's not preventing CSRF?

I saw that there was a security exploit for phpMyAdmin using cross-site request forgery (CSRF). I always thought that the ?token= parameter in all phpMyAdmin URLs prevented against this, but then I read this: To prepare a CSRF attack URL, the…
Goose
  • 1,394
  • 1
  • 11
  • 17
2
votes
2 answers

Does "/phpmyadmin/setup/index.php" present a security risk?

I found that in several websites, [HOSTNAME]/phpmyadmin/setup/index.php is accessible by default without authentication. However, it seems impossible to modify anything or to do security damage. Also, the website database is not accessible via this…
Duke Nukem
  • 687
  • 3
  • 9
  • 20
1
vote
1 answer

Why is phpMyAdmin & Apache connecting to random IPs?

Using phpMyAdmin and XAMPP in connection with local WordPress development. Sometimes when I open the local site http://localhost/phpmyadmin/index.php the firewall is showing connection attempts from httpd.exe, for example to IPs 185.59.222.11 and…
lowtechsun
  • 183
  • 6
1
vote
1 answer

Was my phpMyAdmin hacked?

On a server of mine I have a current version of phpMyAdmin running. Unfortunately (my bad I knew I had to delete this folder for security after installation, I simply forgot... dangit) I still had the setup folder still in the phpMyAdmin's root…
Flatron
  • 225
  • 1
  • 6
0
votes
1 answer

How do I create comparable security to PHPmyadmin?

I have a website hosted by netfirms, and phpmyadmin is part of the package. It's a very powerful general tool, but it takes a while to load and there are some very long and specific tasks I need to do weekly. I could easily write a php page that…
Jonathon Philip Chambers
  • 159
  • 7
0
votes
3 answers

Can ModSecurity defend from Brute Force Attacks on PHPmyadmin and WordPress as well?

Can the software ModSecurity defend from Brute Force Attacks on PHPmyadmin and WordPress as well? A particular hosting company providing shared hosting told me that ModSecurity should cover PHPmyadmin and WordPress as well as their Admin area and…
Arcticooling
  • 269
  • 2
  • 13