phpMyAdmin 4.0.10.20 is released

2017-03-29

Welcome to phpMyAdmin 4.0.10.20, a release containing a security fix and a bug fix.

The security fix relates to the possible bypass of $cfg['Servers'][$i]['AllowNoPassword'], see PMASA-2017-08. The bug fix relates to searching a database when the locale is not set 'en'.

As long as no users are configured with no password or the server is not relying on $cfg['Servers'][$i]['AllowNoPassword'] for security protection, this update is not a required upgrade. For more information, you can refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/