Lucene search

[email protected]NVD:CVE-2013-5003

HistoryJul 31, 2013 - 1:20 p.m.

CVE-2013-5003

2013-07-3113:20:08

CWE-89

[email protected]

web.nvd.nist.gov

CVSS2

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.002

Percentile

53.6%

JSON

Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pmd_pdf.php or (2) the pdf_page_number parameter to schema_export.php.

Affected configurations

Nvd

Node

phpmyadminphpmyadminMatch3.5.0.0

phpmyadminphpmyadminMatch3.5.1.0

phpmyadminphpmyadminMatch3.5.2.0

phpmyadminphpmyadminMatch3.5.2.1

phpmyadminphpmyadminMatch3.5.2.2

phpmyadminphpmyadminMatch3.5.3.0

phpmyadminphpmyadminMatch3.5.4

phpmyadminphpmyadminMatch3.5.5

phpmyadminphpmyadminMatch3.5.6

phpmyadminphpmyadminMatch3.5.7

phpmyadminphpmyadminMatch3.5.7rc1

phpmyadminphpmyadminMatch3.5.8

phpmyadminphpmyadminMatch3.5.8rc1

phpmyadminphpmyadminMatch3.5.8.1

Node

phpmyadminphpmyadminMatch4.0.0

phpmyadminphpmyadminMatch4.0.0rc2

phpmyadminphpmyadminMatch4.0.0rc3

phpmyadminphpmyadminMatch4.0.1

phpmyadminphpmyadminMatch4.0.2

phpmyadminphpmyadminMatch4.0.3

phpmyadminphpmyadminMatch4.0.4

phpmyadminphpmyadminMatch4.0.4.1

VendorProductVersionCPE
phpmyadminphpmyadmin3.5.0.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.0.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.1.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.1.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.2.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.2.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.2.1cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.2.1:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.2.2cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.2.2:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.3.0cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.3.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.4cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.4:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.5cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.5:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.6cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.6:*:*:*:*:*:*:*
phpmyadminphpmyadmin3.5.7cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phpmyadmin	phpmyadmin	3.5.0.0	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.0.0:::::::*
phpmyadmin	phpmyadmin	3.5.1.0	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.1.0:::::::*
phpmyadmin	phpmyadmin	3.5.2.0	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.2.0:::::::*
phpmyadmin	phpmyadmin	3.5.2.1	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.2.1:::::::*
phpmyadmin	phpmyadmin	3.5.2.2	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.2.2:::::::*
phpmyadmin	phpmyadmin	3.5.3.0	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.3.0:::::::*
phpmyadmin	phpmyadmin	3.5.4	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.4:::::::*
phpmyadmin	phpmyadmin	3.5.5	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.5:::::::*
phpmyadmin	phpmyadmin	3.5.6	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.6:::::::*
phpmyadmin	phpmyadmin	3.5.7	cpe:2.3:a:phpmyadmin:phpmyadmin:3.5.7:::::::*