An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature. https://nvd.nist.gov/vuln/detail/CVE-2019-6798