{"id":1804,"date":"2005-12-07T19:17:58","date_gmt":"2005-12-07T17:17:58","guid":{"rendered":"https:\/\/www.fullo.net\/blog\/archives\/2005\/12\/07\/aggiornate-phpmyadmin\/"},"modified":"2005-12-07T19:17:58","modified_gmt":"2005-12-07T17:17:58","slug":"aggiornate-phpmyadmin","status":"publish","type":"post","link":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/","title":{"rendered":"Aggiornate phpMyAdmin"},"content":{"rendered":"<p>Aggiornate <a href=\"http:\/\/www.phpmyadmin.net\/\">phpMyAdmin<\/a>, l&#8217;ultima versione <a href=\"http:\/\/www.hardened-php.net\/advisory_252005.110.html\">ha un bel baco XSS<\/a>&#8230;<\/p>\n<p>ciuaz<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Aggiornate phpMyAdmin, l&#8217;ultima versione ha un bel baco XSS&#8230; ciuaz<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[9],"tags":[190,2248,918,217,919],"class_list":["post-1804","post","type-post","status-publish","format-standard","hentry","category-php","tag-mysql","tag-php","tag-phpmyadmin","tag-security","tag-xss"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Aggiornate phpMyAdmin - Fullo<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/\" \/>\n<meta property=\"og:locale\" content=\"it_IT\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Aggiornate phpMyAdmin - Fullo\" \/>\n<meta property=\"og:description\" content=\"Aggiornate phpMyAdmin, l&#8217;ultima versione ha un bel baco XSS&#8230; ciuaz\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/\" \/>\n<meta property=\"og:site_name\" content=\"Fullo\" \/>\n<meta property=\"article:published_time\" content=\"2005-12-07T17:17:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2021\/05\/FB_IMG_1515748807284.jpg?fit=1453%2C1453&ssl=1\" \/>\n\t<meta property=\"og:image:width\" content=\"1453\" \/>\n\t<meta property=\"og:image:height\" content=\"1453\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Francesco Fullone\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@fullo\" \/>\n<meta name=\"twitter:site\" content=\"@fullo\" \/>\n<meta name=\"twitter:label1\" content=\"Scritto da\" \/>\n\t<meta name=\"twitter:data1\" content=\"Francesco Fullone\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/\"},\"author\":{\"name\":\"Francesco Fullone\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"headline\":\"Aggiornate phpMyAdmin\",\"datePublished\":\"2005-12-07T17:17:58+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/\"},\"wordCount\":13,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"keywords\":[\"mysql\",\"php\",\"phpmyadmin\",\"security\",\"xss\"],\"articleSection\":[\"php\"],\"inLanguage\":\"it-IT\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/\",\"name\":\"Aggiornate phpMyAdmin - Fullo\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\"},\"datePublished\":\"2005-12-07T17:17:58+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/#breadcrumb\"},\"inLanguage\":\"it-IT\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/2005\\\/12\\\/07\\\/aggiornate-phpmyadmin\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Aggiornate phpMyAdmin\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/\",\"name\":\"Fullo\",\"description\":\"nulla e&#039; impossibile per chi non lo deve fare!\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"it-IT\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/#\\\/schema\\\/person\\\/24e91bc6caea6c411a8668df5639428c\",\"name\":\"Francesco Fullone\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"it-IT\",\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\",\"width\":622,\"height\":622,\"caption\":\"Francesco Fullone\"},\"logo\":{\"@id\":\"https:\\\/\\\/i0.wp.com\\\/www.fullo.net\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/10\\\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1\"},\"sameAs\":[\"http:\\\/\\\/www.fullo.net\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/fullo\",\"https:\\\/\\\/x.com\\\/fullo\"],\"url\":\"https:\\\/\\\/www.fullo.net\\\/blog\\\/author\\\/fullo\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Aggiornate phpMyAdmin - Fullo","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/","og_locale":"it_IT","og_type":"article","og_title":"Aggiornate phpMyAdmin - Fullo","og_description":"Aggiornate phpMyAdmin, l&#8217;ultima versione ha un bel baco XSS&#8230; ciuaz","og_url":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/","og_site_name":"Fullo","article_published_time":"2005-12-07T17:17:58+00:00","og_image":[{"width":1453,"height":1453,"url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2021\/05\/FB_IMG_1515748807284.jpg?fit=1453%2C1453&ssl=1","type":"image\/jpeg"}],"author":"Francesco Fullone","twitter_card":"summary_large_image","twitter_creator":"@fullo","twitter_site":"@fullo","twitter_misc":{"Scritto da":"Francesco Fullone"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/#article","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/"},"author":{"name":"Francesco Fullone","@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"headline":"Aggiornate phpMyAdmin","datePublished":"2005-12-07T17:17:58+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/"},"wordCount":13,"commentCount":0,"publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"keywords":["mysql","php","phpmyadmin","security","xss"],"articleSection":["php"],"inLanguage":"it-IT","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/","url":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/","name":"Aggiornate phpMyAdmin - Fullo","isPartOf":{"@id":"https:\/\/www.fullo.net\/blog\/#website"},"datePublished":"2005-12-07T17:17:58+00:00","breadcrumb":{"@id":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/#breadcrumb"},"inLanguage":"it-IT","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fullo.net\/blog\/2005\/12\/07\/aggiornate-phpmyadmin\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fullo.net\/blog\/"},{"@type":"ListItem","position":2,"name":"Aggiornate phpMyAdmin"}]},{"@type":"WebSite","@id":"https:\/\/www.fullo.net\/blog\/#website","url":"https:\/\/www.fullo.net\/blog\/","name":"Fullo","description":"nulla e&#039; impossibile per chi non lo deve fare!","publisher":{"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fullo.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"it-IT"},{"@type":["Person","Organization"],"@id":"https:\/\/www.fullo.net\/blog\/#\/schema\/person\/24e91bc6caea6c411a8668df5639428c","name":"Francesco Fullone","image":{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","url":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","contentUrl":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1","width":622,"height":622,"caption":"Francesco Fullone"},"logo":{"@id":"https:\/\/i0.wp.com\/www.fullo.net\/blog\/wp-content\/uploads\/2024\/10\/hawiaina-gold-circled-white.png?fit=622%2C622&ssl=1"},"sameAs":["http:\/\/www.fullo.net","https:\/\/www.linkedin.com\/in\/fullo","https:\/\/x.com\/fullo"],"url":"https:\/\/www.fullo.net\/blog\/author\/fullo\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p3OSc1-t6","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":2088,"url":"https:\/\/www.fullo.net\/blog\/2006\/10\/19\/serendipity-security-release\/","url_meta":{"origin":1804,"position":0},"title":"Serendipity security release","author":"Francesco Fullone","date":"19\/10\/2006","format":false,"excerpt":"E' stata rilasciata una security release per Serendipity. E' stato trovato un baco XSS per l'area di amministrazione del cms che permetterebbe di mettere in ginocchio un sito basato sul cms opensource. Ovviamente il sito di Serendipity \u00e8 stato il primo ad essere stato attaccato :( ... ciuaz","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2421,"url":"https:\/\/www.fullo.net\/blog\/2008\/04\/24\/magicincludeshelltxt-e-wordpress-22x\/","url_meta":{"origin":1804,"position":1},"title":"Magicincludeshell.txt e WordPress 2.2.x","author":"Francesco Fullone","date":"24\/04\/2008","format":false,"excerpt":"Ne avevano parlato qualche giorno fa su wordpress-it e su weblogstoolscollection, ma fino a quando non si prova in prima persona tutti sono restii ad aggiornare un blog, soprattutto se ha una template che usa plugin non pi\u00f9 sviluppati o con codice che non sfrutta a pieno le API del\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2108,"url":"https:\/\/www.fullo.net\/blog\/2006\/11\/04\/aggiornate-php-e-fatelo-in-fretta\/","url_meta":{"origin":1804,"position":2},"title":"Aggiornate PHP, e fatelo in fretta&#8230;","author":"Francesco Fullone","date":"04\/11\/2006","format":false,"excerpt":"E' stata rilevato un bug abbastanza grave che permette di usare htmlentities() e htmlspecialchars() per eseguire codice remoto su un server (maggiori info su hardened-php). Siccome quelle due funzioni sono alla base di tutti i metodi di parsing e protezione contro XSS sono normalmente usate ovunque. Su PHP.net trovate le\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2300,"url":"https:\/\/www.fullo.net\/blog\/2007\/07\/10\/gophp5\/","url_meta":{"origin":1804,"position":3},"title":"GoPHP5!","author":"Francesco Fullone","date":"10\/07\/2007","format":false,"excerpt":"Grandiosa l'iniziativa GoPHP5 che cerca di far capire a tutti gli sviluppatori, hosting provider e utenti che \u00e8 tempo di passare a PHP 5. Moltissimi framework e progetti (tra cui phpMyAdmin) si stanno adattando per abbandonare completamente il supporto a PHP 4. Voi cosa state aspettando? Se avete un progetto\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"Support GoPHP5.org","src":"https:\/\/i0.wp.com\/gophp5.org\/sites\/gophp5.org\/buttons\/goPHP5-283x100.png?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":1712,"url":"https:\/\/www.fullo.net\/blog\/2005\/10\/26\/php-sicurezza-e-quantaltro\/","url_meta":{"origin":1804,"position":4},"title":"php, sicurezza e quantaltro&#8230;","author":"Francesco Fullone","date":"26\/10\/2005","format":false,"excerpt":"Continuano gli sproloqui e le wishlist sul futuro framework di Zend, per ora ne parlano: Wez Furlong (il quale per\u00f2 da anche le prime spiegazioni di come sar\u00e0 veramente) John Lim Chris Shifflet con una whishlist sulla sicurezza Ancora qualche links (forse qualcuno vecchio) sulla sicurezza delle applicazioni web: su\u2026","rel":"","context":"In &quot;php&quot;","block_context":{"text":"php","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/php\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2085,"url":"https:\/\/www.fullo.net\/blog\/2006\/10\/18\/wordpress-205rc1\/","url_meta":{"origin":1804,"position":5},"title":"WordPress 2.0.5rc1","author":"Francesco Fullone","date":"18\/10\/2006","format":false,"excerpt":"Prima RC per l'ultima versione di Wordpress 2.0.x, con questa release sono stati corretti alcuni bug minori ed \u00e8 stato migliorato il controllo sui XSS per le custom form. Altra piccola features \u00e8 l'autoriconoscimento dei link all'interno dei post e dei commenti. Wordpress 2.0.5rc1 \u00e8 scaricabile qui ed eventuali bugs\u2026","rel":"","context":"In &quot;open source&quot;","block_context":{"text":"open source","link":"https:\/\/www.fullo.net\/blog\/category\/tecnologia\/open-source\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1804","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/comments?post=1804"}],"version-history":[{"count":0,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/posts\/1804\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/media?parent=1804"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/categories?post=1804"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fullo.net\/blog\/wp-json\/wp\/v2\/tags?post=1804"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}