CVE-2017-1000015by Jeremyin Security Bulletinson Posted on July 17, 2017 phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack through crafted cookie parameters