Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2018-68349E3094.NASLHistoryJan 03, 2019 - 12:00 a.m.
Fedora 28 : phpMyAdmin (2018-68349e3094)
2019-01-0300:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
Upstream announcement :
The phpMyAdmin team is pleased to announce the release of phpMyAdmin version 4.8.2. Among other bug fixes, this contains an important security update and it is highly recommended that all users upgrade immediately.
The urgent vulnerability allows an authenticated attacker to exploit a phpMyAdmin feature to show and potentially execute files on the server. PHP open_basedir restrictions mitigate the effect of this flaw. For further details, see the PMASA announcement .
A second flaw was also fixed allowing an attacker to use a specially crafted database name to trick a user in to executing a cross-site scripting (XSS) attack in the Designer feature .
In addition to the security fixes, this release also includes these bug fixes as part of our regular release cycle :
-
WHERE 0 clause causes a fatal error
-
Fix missing ‘INDEX’ icon
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2018-68349e3094.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(120489);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2018-12581");
script_xref(name:"FEDORA", value:"2018-68349e3094");
script_name(english:"Fedora 28 : phpMyAdmin (2018-68349e3094)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Upstream announcement :
The phpMyAdmin team is pleased to announce the release of **phpMyAdmin
version 4.8.2**. Among other bug fixes, this contains an important
security update and it is highly recommended that all users upgrade
immediately.
The urgent vulnerability allows an authenticated attacker to exploit a
phpMyAdmin feature to show and potentially execute files on the
server. PHP open_basedir restrictions mitigate the effect of this
flaw. For further details, see the PMASA announcement .
A second flaw was also fixed allowing an attacker to use a specially
crafted database name to trick a user in to executing a cross-site
scripting (XSS) attack in the Designer feature .
In addition to the security fixes, this release also includes these
bug fixes as part of our regular release cycle :
- WHERE 0 clause causes a fatal error
- Fix missing 'INDEX' icon
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bodhi.fedoraproject.org/updates/FEDORA-2018-68349e3094"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected phpMyAdmin package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:phpMyAdmin");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:28");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/06/21");
script_set_attribute(attribute:"patch_publication_date", value:"2018/07/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/01/03");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^28([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 28", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC28", reference:"phpMyAdmin-4.8.2-1.fc28")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "phpMyAdmin");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | fedora | phpmyadmin | p-cpe:/a:fedoraproject:fedora:phpmyadmin |
| fedoraproject | fedora | 28 | cpe:/o:fedoraproject:fedora:28 |
Related
ubuntucve
ubuntucve
CVE-2018-12581
2018-06-21 00:00:00
phpmyadmin
phpmyadmin
XSS in Designer feature
2018-06-19 00:00:00
prion
prion
Cross site scripting
2018-06-21 20:29:00
fedora
fedora
[SECURITY] Fedora 28 Update: phpMyAdmin-4.8.2-1.fc28
2018-07-01 22:37:51
osv
osv
CVE-2018-12581
2018-06-21 20:29:00
phpMyAdmin XSS Vulnerability
2022-05-14 03:08:36
phpmyadmin vulnerabilities
2021-03-16 14:27:57
cve
cve
CVE-2018-12581
2018-06-21 20:29:00
mageia
mageia
Updated phpmyadmin packages fix security vulnerability
2018-07-01 20:17:14
openvas
openvas
phpMyAdmin Cross-Site Scripting Vulnerability (PMASA-2018-3) - Windows
2018-06-26 00:00:00
Mageia: Security Advisory (MGASA-2018-0304)
2022-01-28 00:00:00
phpMyAdmin Cross-Site Scripting Vulnerability (PMASA-2018-3) - Linux
2018-06-26 00:00:00
debiancve
debiancve
CVE-2018-12581
2018-06-21 20:29:00
veracode
veracode
Cross-site Scripting (XSS)
2018-06-22 02:58:40
alpinelinux
alpinelinux
CVE-2018-12581
2018-06-21 20:29:00
github
github
phpMyAdmin XSS Vulnerability
2022-05-14 03:08:36
nessus
nessus
openSUSE Security Update : phpMyAdmin (openSUSE-2019-490)
2019-03-27 00:00:00
openSUSE Security Update : phpMyAdmin (openSUSE-2018-669)
2018-06-25 00:00:00
suse
suse
Security update for phpMyAdmin (important)
2018-06-23 15:08:44
Security update for phpMyAdmin (important)
2018-06-23 15:10:01
freebsd
freebsd
phpmyadmin -- remote code inclusion and XSS scripting
2018-06-21 00:00:00
ubuntu
ubuntu
phpMyAdmin vulnerabilities
2021-03-16 00:00:00
Related for FEDORA_2018-68349E3094.NASL