An issue was discovered in phpMyAdmin. An authenticated user can trigger a denial-of-service attack by entering a very long password at the change password dialog. All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected.