Lucene search

CVE-2018-7260

🗓️ 21 Feb 2018 15:00:29Reported by mitreType

Cross-site scripting vulnerability in db_central_columns.php in phpMyAdmin before 4.7.8

Reporter	Title	Published	Views	Family All 42
Fedora	[SECURITY] Fedora 26 Update: phpMyAdmin-4.7.8-1.fc26	1 Mar 201815:58	–	fedora
Fedora	[SECURITY] Fedora 26 Update: php-phpmyadmin-motranslator-4.0-1.fc26	1 Mar 201815:58	–	fedora
Fedora	[SECURITY] Fedora 27 Update: php-phpmyadmin-motranslator-4.0-1.fc27	26 Feb 201816:54	–	fedora
Fedora	[SECURITY] Fedora 27 Update: php-phpmyadmin-sql-parser-4.2.4-3.fc27	26 Feb 201816:54	–	fedora
Fedora	[SECURITY] Fedora 27 Update: phpMyAdmin-4.7.8-1.fc27	26 Feb 201816:54	–	fedora
Fedora	[SECURITY] Fedora 26 Update: php-phpmyadmin-sql-parser-4.2.4-3.fc26	1 Mar 201815:58	–	fedora
Tenable Nessus	Fedora 26 : php-phpmyadmin-motranslator / php-phpmyadmin-sql-parser / etc (2018-147d33439c)	2 Mar 201800:00	–	nessus
Tenable Nessus	FreeBSD : phpMyAdmin -- self XSS in central columns feature (261ca31c-179f-11e8-b8b9-6805ca0b3d42)	22 Feb 201800:00	–	nessus
Tenable Nessus	phpMyAdmin 4.3.x < 4.7.8 XSS (PMASA-2018-1)	25 Nov 202000:00	–	nessus
Tenable Nessus	Fedora 27 : php-phpmyadmin-motranslator / php-phpmyadmin-sql-parser / etc (2018-a1650ed14f)	27 Feb 201800:00	–	nessus

Nvd

Node

phpmyadmin phpmyadminRange<4.7.8

Source	Link
phpmyadmin	www.phpmyadmin.net/security/PMASA-2018-1/
github	www.github.com/phpmyadmin/phpmyadmin/commit/d2886a3
securityfocus	www.securityfocus.com/bid/103099
udiniya	www.udiniya.wordpress.com/2018/02/21/a-tale-of-stealing-session-cookie-in-phpmyadmin/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Feb 2018 15:29Current

5Medium risk

Vulners AI Score5

CVSS23.5

CVSS35.4

EPSS0.00279

CWE-79