Lucene search
FreeBSD1B93F6FE-E1C1-11E2-948D-6805CA0B3D42HistoryJun 30, 2013 - 12:00 a.m.
phpMyAdmin -- Global variable scope injection
2013-06-3000:00:00
vuxml.freebsd.org
12
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
EPSS
0.001
Percentile
50.9%
The phpMyAdmin development team reports:
The import.php script was vulnerable to GLOBALS variable
injection. Therefore, an attacker could manipulate any
configuration parameter.
This vulnerability can be triggered only by someone who
logged in to phpMyAdmin, as the usual token protection
prevents non-logged-in users from accessing the required
form.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | phpmyadmin | =Β 4.0 | UNKNOWN |
| FreeBSD | any | noarch | phpmyadmin | <Β 4.0.4.1 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2013-4729
2013-07-04 00:00:00
cve
cve
CVE-2013-4729
2013-07-04 14:33:41
nessus
nessus
openvas
openvas
phpmyadmin
phpmyadmin
Global variable scope injection.
2013-06-30 00:00:00
osv
osv
phpMyAdmin Global variables scope injection vulnerability
2022-05-17 05:07:49
phpMyAdmin-4.6.5.2-1.1 on GA media
2024-06-15 00:00:00
prion
prion
Design/Logic Flaw
2013-07-04 14:33:00
github
github
phpMyAdmin Global variables scope injection vulnerability
2022-05-17 05:07:49
seebug
seebug
phpMyAdmin <= 4.0.4.1 import.php GLOBALSει注ε
₯ζΌζ΄
2013-07-10 00:00:00
debiancve
debiancve
CVE-2013-4729
2013-07-04 14:33:41
nvd
nvd
CVE-2013-4729
2013-07-04 14:33:41
cvelist
cvelist
CVE-2013-4729
2013-07-04 10:00:00
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
EPSS
0.001
Percentile
50.9%
Related for 1B93F6FE-E1C1-11E2-948D-6805CA0B3D42