[phpmyadmin/phpmyadmin] phpmyadmin contains SQL Injection vulnerability

SQL Injection vulnerability in function getTableCreationQuery in CreateAddField.php in phpMyAdmin 5.x before 5.0.2 via the tbl_storage_engine or tbl_collation parameters to tbl_create.php.

References

• https://nvd.nist.gov/vuln/detail/CVE-2020-22452
• https://github.com/phpmyadmin/phpmyadmin/issues/15898
• https://github.com/phpmyadmin/phpmyadmin/pull/16004
• https://github.com/phpmyadmin/phpmyadmin/commit/bc982466f08ddccad4804ba928f84ff8e25107cb
• https://github.com/advisories/GHSA-prcg-mc23-hgjh