phpMyAdmin 5.2.2
14 August 2025
phpMyAdmin version 5.2.2 is now available (security release).
Upgrading to phpMyAdmin 5.2.2
phpMyAdmin 5.2.2 can be upgraded to (or installed) using any of Installatron's products. Use Installatron's optional Automatic Update feature to automatically apply phpMyAdmin updates as new versions are released, or use Installatron's Clone feature to duplicate an existing phpMyAdmin install to test the 5.2.2 upgrade prior to applying it live. Get started managing your phpMyAdmin installations with Installatron
What's New in phpMyAdmin 5.2.2
Security
- fix possible security issue in sql-parser which could cause long execution times that could create a DOS attack (thanks to Maximilian Krög https://github.com/MoonE)
- fix an XSS vulnerability in the check tables feature (PMASA-2025-1, thanks to bluebird https://github.com/blue-bird1)
- fix an XSS vulnerability in the Insert tab (PMASA-2025-2, thanks to frequent contributor Kamil Tekiela https://github.com/kamil-tekiela)
- fix possible security issue with library code slim/psr7 (CVE-2023-30536)
- fix possible security issue relating to iconv (CVE-2024-2961, PMASA-2025-3)
Bug Fixes and Changes
- fix a full path disclosure in the Monitoring tab
- issue #18268 Fix UI issue the theme manager is disabled
- issue Allow opening server breadcrumb links in new tab with Ctrl/Meta key
- issue #19141 Add cookie prefix '-__Secure-' to cookies to help prevent cookie smuggling
- issue #18106 Fix renaming database with a view
- issue #18120 Fix bug with numerical tables during renaming database
- issue #16851 Fix ($cfg['Order']) default column order doesn't have have any effect since phpMyAdmin 4.2.0
- issue #18258 Speed improvements when exporting a database
- issue #18769 Improved collations support for MariaDB 10.10