Lucene search
MitreCVE-2014-9219HistoryDec 08, 2014 - 11:59 a.m.
CVE-2014-9219
2014-12-0811:59:13
CWE-79
mitre
web.nvd.nist.gov
36
cve-2014-9219
cross-site scripting
xss
phpmyadmin
security vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.002
Percentile
64.9%
Cross-site scripting (XSS) vulnerability in the redirection feature in url.php in phpMyAdmin 4.2.x before 4.2.13.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
Affected configurations
Node
phpmyadminphpmyadminMatch4.2.0
ORphpmyadminphpmyadminMatch4.2.1
ORphpmyadminphpmyadminMatch4.2.2
ORphpmyadminphpmyadminMatch4.2.3
ORphpmyadminphpmyadminMatch4.2.4
ORphpmyadminphpmyadminMatch4.2.5
ORphpmyadminphpmyadminMatch4.2.6
ORphpmyadminphpmyadminMatch4.2.7
ORphpmyadminphpmyadminMatch4.2.7.1
ORphpmyadminphpmyadminMatch4.2.8
ORphpmyadminphpmyadminMatch4.2.8.1
ORphpmyadminphpmyadminMatch4.2.9
ORphpmyadminphpmyadminMatch4.2.9.1
ORphpmyadminphpmyadminMatch4.2.10
ORphpmyadminphpmyadminMatch4.2.10.1
ORphpmyadminphpmyadminMatch4.2.11
ORphpmyadminphpmyadminMatch4.2.12
ORphpmyadminphpmyadminMatch4.2.13
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpmyadmin | phpmyadmin | 4.2.9 | cpe:/a:phpmyadmin:phpmyadmin:4.2.9::: |
| phpmyadmin | phpmyadmin | 4.2.9.1 | cpe:/a:phpmyadmin:phpmyadmin:4.2.9.1::: |
| phpmyadmin | phpmyadmin | 4.2.11 | cpe:/a:phpmyadmin:phpmyadmin:4.2.11::: |
| phpmyadmin | phpmyadmin | 4.2.0 | cpe:/a:phpmyadmin:phpmyadmin:4.2.0::: |
| phpmyadmin | phpmyadmin | 4.2.8.1 | cpe:/a:phpmyadmin:phpmyadmin:4.2.8.1::: |
| phpmyadmin | phpmyadmin | 4.2.10.1 | cpe:/a:phpmyadmin:phpmyadmin:4.2.10.1::: |
| phpmyadmin | phpmyadmin | 4.2.4 | cpe:/a:phpmyadmin:phpmyadmin:4.2.4::: |
| phpmyadmin | phpmyadmin | 4.2.12 | cpe:/a:phpmyadmin:phpmyadmin:4.2.12::: |
| phpmyadmin | phpmyadmin | 4.2.3 | cpe:/a:phpmyadmin:phpmyadmin:4.2.3::: |
| phpmyadmin | phpmyadmin | 4.2.6 | cpe:/a:phpmyadmin:phpmyadmin:4.2.6::: |
Related
debiancve
debiancve
CVE-2014-9219
2014-12-08 11:59:13
cvelist
cvelist
CVE-2014-9219
2014-12-08 11:00:00
prion
prion
Cross site scripting
2014-12-08 11:59:00
openvas
openvas
phpMyAdmin 'url.php' Cross Site Scripting Vulnerability (Dec 2014)
2014-12-22 00:00:00
Fedora Update for phpMyAdmin FEDORA-2014-16358
2014-12-12 00:00:00
Fedora Update for phpMyAdmin FEDORA-2014-16474
2014-12-15 00:00:00
phpmyadmin
phpmyadmin
XSS vulnerability in redirection mechanism.
2014-12-03 00:00:00
nvd
nvd
CVE-2014-9219
2014-12-08 11:59:13
ubuntucve
ubuntucve
CVE-2014-9219
2014-12-08 00:00:00
nessus
nessus
freebsd
freebsd
phpMyAdmin -- XSS and DoS vulnerabilities
2014-12-03 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: phpMyAdmin-4.2.13.1-1.fc21
2014-12-12 04:10:10
[SECURITY] Fedora 19 Update: phpMyAdmin-4.2.13.1-1.fc19
2014-12-15 04:28:07
[SECURITY] Fedora 20 Update: phpMyAdmin-4.2.13.1-1.fc20
2014-12-12 04:20:42
securityvulns
securityvulns
[ MDVSA-2014:243 ] phpmyadmin
2014-12-22 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.002
Percentile
64.9%
Related for CVE-2014-9219