Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-4995
HistoryJul 31, 2013 - 1:20 p.m.

CVE-2013-4995

2013-07-3113:20:08
CWE-79
[email protected]
web.nvd.nist.gov

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.9%

JSON

Cross-site scripting (XSS) vulnerability in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SQL query that is not properly handled during the display of row information.

Affected configurations

NVD
Node
phpmyadminphpmyadminMatch3.5.0.0
OR
phpmyadminphpmyadminMatch3.5.1.0
OR
phpmyadminphpmyadminMatch3.5.2.0
OR
phpmyadminphpmyadminMatch3.5.2.1
OR
phpmyadminphpmyadminMatch3.5.2.2
OR
phpmyadminphpmyadminMatch3.5.3.0
OR
phpmyadminphpmyadminMatch3.5.4
OR
phpmyadminphpmyadminMatch3.5.5
OR
phpmyadminphpmyadminMatch3.5.6
OR
phpmyadminphpmyadminMatch3.5.7
OR
phpmyadminphpmyadminMatch3.5.7rc1
OR
phpmyadminphpmyadminMatch3.5.8
OR
phpmyadminphpmyadminMatch3.5.8rc1
OR
phpmyadminphpmyadminMatch3.5.8.1
Node
phpmyadminphpmyadminMatch4.0.0
OR
phpmyadminphpmyadminMatch4.0.0rc2
OR
phpmyadminphpmyadminMatch4.0.0rc3
OR
phpmyadminphpmyadminMatch4.0.1
OR
phpmyadminphpmyadminMatch4.0.2
OR
phpmyadminphpmyadminMatch4.0.3
OR
phpmyadminphpmyadminMatch4.0.4
OR
phpmyadminphpmyadminMatch4.0.4.1

Related

cvelist 1
phpmyadmin 1
debiancve 1
cve 1
prion 1
ubuntucve 1
debian 3
openvas 5
osv 2
nessus 6
securityvulns 2
mageia 1
gentoo 1
cvelist
cvelist
CVE-2013-4995
2013-07-30 18:00:00
phpmyadmin
phpmyadmin
XSS due to unescaped HTML Output when executing a SQL query.
2013-07-28 00:00:00
debiancve
debiancve
CVE-2013-4995
2013-07-31 13:20:08
cve
cve
CVE-2013-4995
2013-07-31 13:20:08
prion
prion
Cross site scripting
2013-07-31 13:20:00
ubuntucve
ubuntucve
CVE-2013-4995
2013-07-31 00:00:00
debian
debian
phpmyadmin security update
2014-07-09 19:24:50
phpmyadmin security update
2014-07-09 19:24:32
[SECURITY] [DSA 2975-1] phpmyadmin security update
2014-07-09 18:45:33
openvas
openvas
Debian: Security Advisory (DLA-0014-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 2975-1 (phpmyadmin - security update)
2014-07-09 00:00:00
Debian: Security Advisory (DSA-2975-1)
2014-07-08 00:00:00
osv
osv
phpmyadmin - security update
2014-07-09 00:00:00
phpmyadmin - security update
2014-07-09 00:00:00
nessus
nessus
Debian DSA-2975-1 : phpmyadmin - security update
2014-07-10 00:00:00
Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2013:203)
2013-07-31 00:00:00
phpMyAdmin 3.5.x < 3.5.8.2 / 4.0.x < 4.0.4.2 Multiple Vulnerabilities
2014-03-05 00:00:00
securityvulns
securityvulns
[ MDVSA-2013:203 ] phpmyadmin
2013-09-09 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2013-09-09 00:00:00
mageia
mageia
Updated phpmyadmin packages fix security vulnerabilities
2013-07-29 18:06:10
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2013-11-04 00:00:00

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.9%

JSON
Related for NVD:CVE-2013-4995
cvelist1phpmyadmin1debiancve1cve1prion1ubuntucve1debian3openvas5osv2nessus6securityvulns2mageia1gentoo1