Lucene search
FreeBSD8C83145D-2C95-11E1-89B4-001EC9578670HistoryDec 16, 2011 - 12:00 a.m.
phpMyAdmin -- Multiple XSS
2011-12-1600:00:00
vuxml.freebsd.org
28
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
65.9%
The phpMyAdmin development team reports:
Using crafted url parameters, it was possible to produce XSS on
the export panels in the server, database and table sections.
Crafted values entered in the setup interface can produce XSS;
also, if the config directory exists and is writeable, the XSS
payload can be saved to this directory.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | phpmyadmin | <Β 3.4.9.r1 | UNKNOWN |
Related
nessus
nessus
Fedora 16 : phpMyAdmin-3.4.9-1.fc16 (2011-17369)
2012-01-03 00:00:00
FreeBSD : phpMyAdmin -- Multiple XSS (8c83145d-2c95-11e1-89b4-001ec9578670)
2011-12-23 00:00:00
phpMyAdmin 3.4.x < 3.4.9 XSS (PMASA-2011-19 - PMASA-2011-20)
2011-12-22 00:00:00
openvas
openvas
FreeBSD Ports: phpMyAdmin
2012-02-13 00:00:00
Fedora Update for phpMyAdmin FEDORA-2011-17370
2012-01-09 00:00:00
Fedora Update for phpMyAdmin FEDORA-2011-17370
2012-01-09 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: phpMyAdmin-3.4.9-1.fc16
2012-01-01 21:24:07
[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.9-1.fc15
2012-01-01 21:21:23
prion
prion
Cross site scripting
2011-12-22 20:55:00
Cross site scripting
2011-12-22 20:55:00
cve
cve
CVE-2011-4780
2011-12-22 20:55:00
CVE-2011-4782
2011-12-22 20:55:01
phpmyadmin
phpmyadmin
XSS in export.
2011-12-21 00:00:00
XSS in setup.
2011-12-21 00:00:00
ubuntucve
ubuntucve
CVE-2011-4780
2011-12-22 00:00:00
CVE-2011-4782
2011-12-22 00:00:00
seebug
seebug
phpMyAdmin 3.4.9δΉεηζ¬ε€δΈͺθ·¨η«θζ¬ζ§θ‘ζΌζ΄
2012-01-04 00:00:00
phpMyAdmin '$host'ειHTML注ε
₯ζΌζ΄
2011-12-24 00:00:00
nvd
nvd
CVE-2011-4780
2011-12-22 20:55:00
CVE-2011-4782
2011-12-22 20:55:01
debiancve
debiancve
CVE-2011-4780
2011-12-22 20:55:00
CVE-2011-4782
2011-12-22 20:55:01
cvelist
cvelist
CVE-2011-4780
2011-12-22 20:00:00
CVE-2011-4782
2011-12-22 20:00:00
packetstorm
packetstorm
phpMyAdmin 3.4.8 Cross Site Scripting
2011-12-22 00:00:00
securityvulns
securityvulns
TWSL2011-019: Cross-Site Scripting Vulnerability in phpMyAdmin
2011-12-26 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2012-01-04 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.003
Percentile
65.9%
Related for 8C83145D-2C95-11E1-89B4-001EC9578670