Developers of PHPMyAdmin, one of the most popular and widely used database management systems, today released an updated version 4.8.4 of its software to patch several important vulnerabilities that could eventually allow remote attackers to take control of the affected web servers. The software is a free, open-source administration tool for managing MySQL databases using a simple graphical interface over the web-browser. Website administrators and hosting providers are highly recommended to install latest update or patches immediately. Software also includes a cross-site scripting vulnerability in its navigation tree, which impacts versions from at least 4.0 through 4.7.6.
Source: https://thehackernews.com/2018/12/phpmyadmin-security-update.html