Lucene search
Gentoo FoundationMGASA-2014-0402HistoryOct 07, 2014 - 1:22 p.m.
Updated phpmyadmin package fixes security vulnerability
2014-10-0713:22:51
Gentoo Foundation
advisories.mageia.org
20
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
EPSS
0.001
Percentile
49.1%
In phpMyAdmin before 4.1.14.4, with a crafted ENUM value it is possible to trigger an XSS in table search and table structure pages (CVE-2014-7217).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | phpmyadmin | < 4.1.14.5-1 | phpmyadmin-4.1.14.5-1.mga3 |
| Mageia | 4 | noarch | phpmyadmin | < 4.1.14.5-1 | phpmyadmin-4.1.14.5-1.mga4 |
Related
openvas
openvas
phpMyAdmin Multiple Cross-Site Scripting Vulnerabilities (Oct 2014) - Linux
2017-08-21 00:00:00
Fedora Update for phpMyAdmin FEDORA-2014-11983
2014-10-12 00:00:00
Mageia: Security Advisory (MGASA-2014-0402)
2022-01-28 00:00:00
nessus
nessus
FreeBSD : phpMyAdmin -- XSS vulnerabilities (3e8b7f8a-49b0-11e4-b711-6805ca0b3d42)
2014-10-02 00:00:00
Fedora 19 : phpMyAdmin-4.2.9.1-1.fc19 (2014-11983)
2014-10-12 00:00:00
Fedora 20 : phpMyAdmin-4.2.9.1-1.fc20 (2014-12085)
2014-10-06 00:00:00
cvelist
cvelist
CVE-2014-7217
2014-10-03 01:00:00
cve
cve
CVE-2014-7217
2014-10-03 01:55:08
fedora
fedora
[SECURITY] Fedora 21 Update: phpMyAdmin-4.2.9.1-1.fc21
2014-10-08 19:06:12
[SECURITY] Fedora 20 Update: phpMyAdmin-4.2.9.1-1.fc20
2014-10-05 08:14:21
[SECURITY] Fedora 19 Update: phpMyAdmin-4.2.9.1-1.fc19
2014-10-11 06:52:59
osv
osv
phpMyAdmin cross-site scripting Vulnerability via ENUM value
2022-05-17 03:57:46
phpMyAdmin-4.6.5.2-1.1 on GA media
2024-06-15 00:00:00
github
github
phpMyAdmin cross-site scripting Vulnerability via ENUM value
2022-05-17 03:57:46
ubuntucve
ubuntucve
CVE-2014-7217
2014-10-03 00:00:00
phpmyadmin
phpmyadmin
XSS vulnerabilities in table search and table structure pages.
2014-10-01 00:00:00
debiancve
debiancve
CVE-2014-7217
2014-10-03 01:55:08
typo3
typo3
Cross-Site Scripting vulnerability in extension phpMyAdmin (phpmyadmin)
2014-11-05 00:00:00
freebsd
freebsd
phpMyAdmin -- XSS vulnerabilities
2014-10-01 00:00:00
prion
prion
Cross site scripting
2014-10-03 01:55:00
securityvulns
securityvulns
[ MDVSA-2014:194 ] phpmyadmin
2014-10-14 00:00:00
nvd
nvd
CVE-2014-7217
2014-10-03 01:55:08
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
EPSS
0.001
Percentile
49.1%
Related for MGASA-2014-0402