Two-Factor Authentication Bypass in phpMyAdmin by phpMyAdmin
CVE-2022-23807
4.3MEDIUM
What is CVE-2022-23807?
A security issue has been identified in phpMyAdmin affecting versions prior to 4.9.8 and 5.1.2. This vulnerability permits a valid authenticated user to manipulate their account settings, allowing them to bypass the two-factor authentication mechanism in future login attempts. Such a security flaw can expose sensitive user data and compromise overall system integrity if exploited. Users are advised to update to the latest versions to mitigate potential risks.