Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2012-4345
HistoryAug 21, 2012 - 11:55 p.m.

CVE-2012-4345

2012-08-2123:55:01
CWE-79
mitre
web.nvd.nist.gov
35
cve-2012-4345
cross-site scripting
xss
phpmyadmin
web security
nvd

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

36.9%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Database Structure page in phpMyAdmin 3.4.x before 3.4.11.1 and 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via (1) a crafted table name during table creation, or a (2) Empty link or (3) Drop link for a crafted table name.

Affected configurations

Nvd
Node
phpmyadminphpmyadminMatch3.4.0.0
OR
phpmyadminphpmyadminMatch3.4.1.0
OR
phpmyadminphpmyadminMatch3.4.2.0
OR
phpmyadminphpmyadminMatch3.4.3.0
OR
phpmyadminphpmyadminMatch3.4.3.1
OR
phpmyadminphpmyadminMatch3.4.3.2
OR
phpmyadminphpmyadminMatch3.4.4.0
OR
phpmyadminphpmyadminMatch3.4.5.0
OR
phpmyadminphpmyadminMatch3.4.6.0
OR
phpmyadminphpmyadminMatch3.4.7.0
OR
phpmyadminphpmyadminMatch3.4.7.1
OR
phpmyadminphpmyadminMatch3.4.8.0
OR
phpmyadminphpmyadminMatch3.4.9.0
OR
phpmyadminphpmyadminMatch3.4.10.0
OR
phpmyadminphpmyadminMatch3.4.10.1
OR
phpmyadminphpmyadminMatch3.4.10.2
OR
phpmyadminphpmyadminMatch3.4.11
OR
phpmyadminphpmyadminMatch3.5.0.0
OR
phpmyadminphpmyadminMatch3.5.1.0
OR
phpmyadminphpmyadminMatch3.5.2.0
OR
phpmyadminphpmyadminMatch3.5.2.1
VendorProductVersionCPE
phpmyadminphpmyadmin3.4.0.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.0.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.1.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.1.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.2.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.2.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.3.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.3.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.3.1cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.3.1:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.3.2cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.3.2:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.4.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.4.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.5.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.5.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.6.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.6.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.4.7.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.4.7.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 211

Related

osv 3
phpmyadmin 1
github 2
openvas 8
debiancve 2
cvelist 2
ubuntucve 2
seebug 1
nessus 6
nvd 2
prion 2
freebsd 1
fedora 3
cve 1
osv
osv
phpMyAdmin Multiple Cross-site Scripting Vulnerabilities in the Database Structure page
2022-05-17 05:12:26
phpMyAdmin Multiple XSS Vulnerabilities
2022-05-17 05:25:11
phpMyAdmin-4.6.5.2-1.1 on GA media
2024-06-15 00:00:00
phpmyadmin
phpmyadmin
Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages.
2012-08-16 00:00:00
github
github
phpMyAdmin Multiple Cross-site Scripting Vulnerabilities in the Database Structure page
2022-05-17 05:12:26
phpMyAdmin Multiple XSS Vulnerabilities
2022-05-17 05:25:11
openvas
openvas
FreeBSD Ports: phpMyAdmin
2012-08-30 00:00:00
FreeBSD Ports: phpMyAdmin
2012-08-30 00:00:00
Fedora Update for phpMyAdmin FEDORA-2012-12031
2012-08-30 00:00:00
debiancve
debiancve
CVE-2012-4345
2012-08-21 23:55:01
CVE-2012-4579
2012-08-21 23:55:01
cvelist
cvelist
CVE-2012-4345
2012-08-21 23:00:00
CVE-2012-4579
2012-08-21 23:00:00
ubuntucve
ubuntucve
CVE-2012-4345
2012-08-21 00:00:00
CVE-2012-4579
2012-08-21 00:00:00
seebug
seebug
phpMyAdmin 3.4.x 倚δΈͺHTML注ε…₯漏洞
2012-08-21 00:00:00
nessus
nessus
FreeBSD : phpMyAdmin -- Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages (db1d3340-e83b-11e1-999b-e0cb4e266481)
2012-08-17 00:00:00
openSUSE Security Update : phpMyAdmin (openSUSE-SU-2012:1062-1)
2014-06-13 00:00:00
Fedora 17 : phpMyAdmin-3.5.2.2-1.fc17 (2012-12031)
2012-08-29 00:00:00
nvd
nvd
CVE-2012-4345
2012-08-21 23:55:01
CVE-2012-4579
2012-08-21 23:55:01
prion
prion
Cross site scripting
2012-08-21 23:55:00
Cross site scripting
2012-08-21 23:55:00
freebsd
freebsd
phpMyAdmin -- Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages
2012-08-12 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: phpMyAdmin-3.5.2.2-1.fc18
2012-09-17 23:52:42
[SECURITY] Fedora 16 Update: phpMyAdmin-3.5.2.2-1.fc16
2012-08-28 23:32:01
[SECURITY] Fedora 17 Update: phpMyAdmin-3.5.2.2-1.fc17
2012-08-28 23:25:59
cve
cve
CVE-2012-4579
2012-08-21 23:55:01

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

AI Score

5.2

Confidence

High

EPSS

0.001

Percentile

36.9%

JSON
Related for CVE-2012-4345
osv3phpmyadmin1github2openvas8debiancve2cvelist2ubuntucve2seebug1nessus6nvd2prion2freebsd1fedora3cve1