Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-6100
HistoryNov 23, 2007 - 8:46 p.m.

CVE-2007-6100

2007-11-2320:46:00
CWE-79
[email protected]
web.nvd.nist.gov

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

5.3 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.4%

JSON

Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie auth_type, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability than CVE-2005-0992.

Affected configurations

NVD
Node
phpmyadminphpmyadminRange≀2.11.2.1
OR
phpmyadminphpmyadminMatch2.0.0
OR
phpmyadminphpmyadminMatch2.0.1
OR
phpmyadminphpmyadminMatch2.0.2
OR
phpmyadminphpmyadminMatch2.0.3
OR
phpmyadminphpmyadminMatch2.0.4
OR
phpmyadminphpmyadminMatch2.0.5
OR
phpmyadminphpmyadminMatch2.1.0
OR
phpmyadminphpmyadminMatch2.1.1
OR
phpmyadminphpmyadminMatch2.1.2
OR
phpmyadminphpmyadminMatch2.2.0
OR
phpmyadminphpmyadminMatch2.2.2
OR
phpmyadminphpmyadminMatch2.2.3
OR
phpmyadminphpmyadminMatch2.2.4
OR
phpmyadminphpmyadminMatch2.2.5
OR
phpmyadminphpmyadminMatch2.2.6
OR
phpmyadminphpmyadminMatch2.3.1
OR
phpmyadminphpmyadminMatch2.3.2
OR
phpmyadminphpmyadminMatch2.4.0
OR
phpmyadminphpmyadminMatch2.5.0
OR
phpmyadminphpmyadminMatch2.5.1
OR
phpmyadminphpmyadminMatch2.5.2
OR
phpmyadminphpmyadminMatch2.5.3
OR
phpmyadminphpmyadminMatch2.5.4
OR
phpmyadminphpmyadminMatch2.5.5
OR
phpmyadminphpmyadminMatch2.5.7
OR
phpmyadminphpmyadminMatch2.6.1
OR
phpmyadminphpmyadminMatch2.6.2
OR
phpmyadminphpmyadminMatch2.6.3
OR
phpmyadminphpmyadminMatch2.6.4
OR
phpmyadminphpmyadminMatch2.7.0
OR
phpmyadminphpmyadminMatch2.8.0
OR
phpmyadminphpmyadminMatch2.8.0.1
OR
phpmyadminphpmyadminMatch2.8.0.2
OR
phpmyadminphpmyadminMatch2.8.0.3
OR
phpmyadminphpmyadminMatch2.8.1
OR
phpmyadminphpmyadminMatch2.8.2
OR
phpmyadminphpmyadminMatch2.8.3
OR
phpmyadminphpmyadminMatch2.8.4
OR
phpmyadminphpmyadminMatch2.9.0
OR
phpmyadminphpmyadminMatch2.9.0.1
OR
phpmyadminphpmyadminMatch2.9.0.2
OR
phpmyadminphpmyadminMatch2.9.0.3
OR
phpmyadminphpmyadminMatch2.9.1
OR
phpmyadminphpmyadminMatch2.9.1.1
OR
phpmyadminphpmyadminMatch2.9.2
OR
phpmyadminphpmyadminMatch2.10.0
OR
phpmyadminphpmyadminMatch2.10.0.0
OR
phpmyadminphpmyadminMatch2.10.0.1
OR
phpmyadminphpmyadminMatch2.10.0.2
OR
phpmyadminphpmyadminMatch2.10.1
OR
phpmyadminphpmyadminMatch2.10.01
OR
phpmyadminphpmyadminMatch2.10.1.0
OR
phpmyadminphpmyadminMatch2.10.2
OR
phpmyadminphpmyadminMatch2.10.2.0
OR
phpmyadminphpmyadminMatch2.10.3
OR
phpmyadminphpmyadminMatch2.10.3.0
OR
phpmyadminphpmyadminMatch2.10.3rc1
OR
phpmyadminphpmyadminMatch2.11.0
OR
phpmyadminphpmyadminMatch2.11.1.0
OR
phpmyadminphpmyadminMatch2.11.1.1
OR
phpmyadminphpmyadminMatch2.11.1.2
OR
phpmyadminphpmyadminMatch2.11.2.0
OR
phpmyadminphpmyadminMatch2.11.2.2
OR
phpmyadminphpmyadminMatch2.11.3.0
OR
phpmyadminphpmyadminMatch2.11.4.0
OR
phpmyadminphpmyadminMatch2.11.5.0
OR
phpmyadminphpmyadminMatch2.11.5.1
OR
phpmyadminphpmyadminMatch2.11.5.2
OR
phpmyadminphpmyadminMatch2.11.6.0
OR
phpmyadminphpmyadminMatch2.11.7.0
OR
phpmyadminphpmyadminMatch2.11.7.1
OR
phpmyadminphpmyadminMatch2.11.8.0
OR
phpmyadminphpmyadminMatch2.11.9.0
OR
phpmyadminphpmyadminMatch2.11.9.1
OR
phpmyadminphpmyadminMatch2.11.9.2
OR
phpmyadminphpmyadminMatch2.11.9.3
OR
phpmyadminphpmyadminMatch2.11.9.4
OR
phpmyadminphpmyadminMatch2.11.9.5
OR
phpmyadminphpmyadminMatch2.11.9.6
OR
phpmyadminphpmyadminMatch2.11.10.0
OR
phpmyadminphpmyadminMatch2.11.10.1

Related

ubuntucve 3
cvelist 3
cve 3
debiancve 3
prion 2
seebug 1
openvas 6
freebsd 2
phpmyadmin 2
nvd 2
nessus 6
gentoo 1
securityvulns 1
ubuntucve
ubuntucve
CVE-2007-6100
2007-11-23 00:00:00
CVE-2005-0992
2005-05-02 00:00:00
CVE-2007-0341
2007-01-18 00:00:00
cvelist
cvelist
CVE-2007-6100
2007-11-23 20:00:00
CVE-2005-0992
2005-04-07 04:00:00
CVE-2007-0341
2007-01-18 02:00:00
cve
cve
CVE-2007-6100
2007-11-23 20:46:00
CVE-2005-0992
2005-05-02 04:00:00
CVE-2007-0341
2007-01-18 02:28:00
debiancve
debiancve
CVE-2007-6100
2007-11-23 20:46:00
CVE-2005-0992
2005-05-02 04:00:00
CVE-2007-0341
2007-01-18 02:28:00
prion
prion
Cross site scripting
2007-11-23 20:46:00
Cross site scripting
2007-01-18 02:28:00
seebug
seebug
phpMyAdminη™»ε½•ι‘΅ι’θ·¨η«™θ„šζœ¬ζΌζ΄ž
2008-10-26 00:00:00
openvas
openvas
FreeBSD Ports: phpmyadmin
2008-09-04 00:00:00
FreeBSD Ports: phpmyadmin
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200504-08 (phpMyAdmin)
2008-09-24 00:00:00
freebsd
freebsd
phpmyadmin -- Cross Site Scripting
2007-11-20 00:00:00
phpmyadmin -- cross site scripting vulnerability
2005-04-03 00:00:00
phpmyadmin
phpmyadmin
XSS vulnerability
2007-11-20 00:00:00
Cross-Site Scripting vulnerability
2005-04-03 00:00:00
nvd
nvd
CVE-2005-0992
2005-05-02 04:00:00
CVE-2007-0341
2007-01-18 02:28:00
nessus
nessus
GLSA-200504-08 : phpMyAdmin: XSS vulnerability
2005-04-12 00:00:00
FreeBSD : phpmyadmin -- XSS (15485ae8-9848-11dc-9e48-0016179b2dd5)
2007-11-26 00:00:00
phpMyAdmin index.php convcharset Parameter XSS
2005-04-05 00:00:00
gentoo
gentoo
phpMyAdmin: Cross-site scripting vulnerability
2005-04-11 00:00:00
securityvulns
securityvulns
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2007-01-12 00:00:00

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

5.3 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.4%

JSON
Related for NVD:CVE-2007-6100
ubuntucve3cvelist3cve3debiancve3prion2seebug1openvas6freebsd2phpmyadmin2nvd2nessus6gentoo1securityvulns1