Lucene search
FreeBSDE285A1F4-4568-11DD-AE96-0030843D3802HistoryJun 23, 2008 - 12:00 a.m.
phpmyadmin -- Cross Site Scripting Vulnerabilities
2008-06-2300:00:00
vuxml.freebsd.org
16
0.004 Low
EPSS
Percentile
74.4%
Secunia report:
Some vulnerabilities have been reported in phpMyAdmin, which can be
exploited by malicious people to conduct cross-site scripting
attacks.
Input passed via unspecified parameters to files in /libraries is not
properly sanitised before being returned to the user. This can be
exploited to execute arbitrary HTML and script code in a userβs
browser session in context of an affected site.
Successful exploitation requires that βregister_globalsβ is enabled
and support for β.htaccessβ files is disabled.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | phpmyadmin | <Β 2.11.7 | UNKNOWN |
Related
seebug
seebug
phpMyAdminθΏη¨θ·¨η«θζ¬ζΌζ΄
2008-07-07 00:00:00
ubuntucve
ubuntucve
CVE-2008-2960
2008-07-02 00:00:00
openvas
openvas
FreeBSD Ports: phpmyadmin
2008-09-04 00:00:00
FreeBSD Ports: phpmyadmin
2008-09-04 00:00:00
SUSE: Security Summary (SUSE-SR:2009:003)
2009-02-02 00:00:00
phpmyadmin
phpmyadmin
XSS on plausible insecure PHP installation
2008-06-23 00:00:00
nessus
nessus
FreeBSD : phpmyadmin -- XSS Vulnerabilities (e285a1f4-4568-11dd-ae96-0030843d3802)
2008-07-02 00:00:00
openSUSE Security Update : phpMyAdmin (phpMyAdmin-442)
2009-07-21 00:00:00
openSUSE 10 Security Update : phpMyAdmin (phpMyAdmin-5935)
2009-01-22 00:00:00
cve
cve
CVE-2008-2960
2008-07-02 17:14:00
redhatcve
redhatcve
CVE-2008-2960
2019-10-04 20:09:18
debiancve
debiancve
CVE-2008-2960
2008-07-02 17:14:00
prion
prion
Cross site scripting
2008-07-02 17:14:00