Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable9104.PRM
HistoryFeb 25, 2016 - 12:00 a.m.

phpMyAdmin 4.0.x < 4.0.10.10 / 4.2.x < 4.2.13.3 / 4.3.x < 4.3.13.1 / 4.4.x < 4.4.6.1 Multiple Vulnerabilities (PMASA-2015-2, PMASA-2015-3)

2016-02-2500:00:00
Tenable
www.tenable.com
18
JSON

Versions of phpMyAdmin 4.0.x prior to 4.0.10.10, 4.2.x prior to 4.2.13.3, 4.3.x prior to 4.3.13.1, or 4.4.x prior to 4.4.6.1 are unpatched for the following vulnerabilities :

  • An attacker could trick a user with a crafted URL during installation to alter the configuration file being generated. (CVE-2015-3902)
  • A flaw exists in ‘libraries/Config.class.php’ due to an error in an API call to GitHub that allows a man-in-the-middle attacker to perform unauthorized actions. (CVE-2015-3903)
Binary data 9104.prm
VendorProductVersionCPE
phpmyadminphpmyadmincpe:/a:phpmyadmin:phpmyadmin

Related

fedora 3
nessus 9
openvas 8
freebsd 1
mageia 1
cve 2
debiancve 2
prion 2
phpmyadmin 2
ubuntucve 2
securityvulns 2
debian 2
osv 2
fedora
fedora
[SECURITY] Fedora 21 Update: phpMyAdmin-4.4.6.1-1.fc21
2015-05-17 06:39:35
[SECURITY] Fedora 20 Update: phpMyAdmin-4.4.6.1-1.fc20
2015-05-17 06:44:09
[SECURITY] Fedora 22 Update: phpMyAdmin-4.4.6.1-1.fc22
2015-05-26 03:43:49
nessus
nessus
FreeBSD : phpMyAdmin -- XSRF and man-in-the-middle vulnerabilities (c6e31869-f99f-11e4-9f91-6805ca0b3d42)
2015-05-14 00:00:00
phpMyAdmin 4.0.x < 4.0.10.10 / 4.2.x < 4.2.13.3 / 4.3.x < 4.3.13.1 / 4.4.x < 4.4.6.1 Multiple Vulnerabilities (PMASA-2015-2, PMASA-2015-3)
2020-11-27 00:00:00
phpMyAdmin 4.0.x < 4.0.10.10 / 4.2.x < 4.2.13.3 / 4.3.x < 4.3.13.1 / 4.4.x < 4.4.6.1 Multiple Vulnerabilities (PMASA-2015-2, PMASA-2015-3) (deprecated)
2015-05-20 00:00:00
openvas
openvas
Fedora Update for phpMyAdmin FEDORA-2015-8267
2015-06-09 00:00:00
Mageia: Security Advisory (MGASA-2015-0232)
2022-01-28 00:00:00
phpMyAdmin Multiple Vulnerabilities -01 (Jun 2015)
2015-06-04 00:00:00
freebsd
freebsd
phpMyAdmin -- XSRF and man-in-the-middle vulnerabilities
2015-05-13 00:00:00
mageia
mageia
Updated phpmyadmin packages fix security vulnerabilities
2015-05-18 22:08:05
cve
cve
CVE-2015-3902
2015-05-26 15:59:00
CVE-2015-3903
2015-05-26 15:59:00
debiancve
debiancve
CVE-2015-3902
2015-05-26 15:59:00
CVE-2015-3903
2015-05-26 15:59:00
prion
prion
Cross site request forgery (csrf)
2015-05-26 15:59:00
Design/Logic Flaw
2015-05-26 15:59:00
phpmyadmin
phpmyadmin
XSRF/CSRF vulnerability in phpMyAdmin setup.
2015-05-13 00:00:00
Vulnerability allowing man-in-the-middle attack on API call to GitHub.
2015-05-13 00:00:00
ubuntucve
ubuntucve
CVE-2015-3902
2015-05-26 00:00:00
CVE-2015-3903
2015-05-26 00:00:00
securityvulns
securityvulns
phpMyAdmin 4.4.6 Man-In-the-Middle API Github
2015-05-18 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2015-05-18 00:00:00
debian
debian
[SECURITY] [DSA 3382-1] phpmyadmin security update
2015-10-28 19:52:51
[SECURITY] [DLA 336-1] phpmyadmin security update
2015-10-28 20:01:35
osv
osv
phpmyadmin - security update
2015-10-28 00:00:00
phpmyadmin - security update
2015-10-28 00:00:00
JSON
Related for 9104.PRM
fedora3nessus9openvas8freebsd1mageia1cve2debiancve2prion2phpmyadmin2ubuntucve2securityvulns2debian2osv2