{"id": "OPENVAS:1361412562310801494", "bulletinFamily": "scanner", "title": "phpMyAdmin 'phpinfo.php' Security bypass Vulnerability", "description": "The host is running phpMyAdmin and is prone to security bypass\n vulnerability.", "published": "2010-12-27T00:00:00", "modified": "2019-12-05T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801494", "reporter": "Copyright (C) 2010 Greenbone Networks GmbH", "references": ["http://www.vupen.com/english/advisories/2010/3238", "http://secunia.com/advisories/42485", "http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php", "http://www.phpmyadmin.net/home_page/downloads.php"], "cvelist": ["CVE-2010-4481"], "type": "openvas", "lastseen": "2019-12-06T16:46:54", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2010-4481"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "The host is running phpMyAdmin and is prone to security bypass\n vulnerability.", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "869be03773d147184a598adbb352e9ce3e08f35a30878b2f414c77633e8c143a", "hashmap": [{"hash": "aaf5de0d2f83a4d9d75f718271ef8ecb", "key": "sourceData"}, {"hash": "60c197695620d55fd3b5b17287d9cae5", "key": "references"}, {"hash": "1fab8e7abbc990fa76d6bc64ab26b530", "key": "title"}, {"hash": "e4f9dcc45e6b534cbaf7280344540a72", "key": "description"}, {"hash": "55199d25018fbdb9b50e6b64d444c3a4", "key": "naslFamily"}, {"hash": "7fe0cd4aa0b716b68d5d6a8b9f7fb207", "key": "pluginID"}, {"hash": "eb336a49bc8ed48fa4f2c4c0281a89db", "key": "published"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "8055448c8aafd510a869e608acf34a67", "key": "href"}, {"hash": "0ccf2ef98f8b8c1761c2281135d5f547", "key": "reporter"}, {"hash": "c2eea933d97966be19ceab275cbda399", "key": "modified"}, {"hash": "c08b0c20bd8c75470ae82e000000b109", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801494", "id": "OPENVAS:1361412562310801494", "lastseen": "2018-09-02T00:05:10", "modified": "2017-02-20T00:00:00", "naslFamily": "Web application abuses", "objectVersion": "1.3", "pluginID": "1361412562310801494", "published": "2010-12-27T00:00:00", "references": ["http://www.vupen.com/english/advisories/2010/3238", "http://secunia.com/advisories/42485", "http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php"], "reporter": "Copyright (C) 2010 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_phpmyadmin_security_bypass_vuln.nasl 5373 2017-02-20 16:27:48Z teissa $\n#\n# phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\n#\n# Authors:\n# Madhuri D <dmadhuri@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ntag_impact = \"Successful exploitation will let the unauthenticated attackers to display\n information related to PHP.\n Impact Level: Application\";\ntag_affected = \"phpMyAdmin version prior to 3.4.0-beta1.\";\ntag_insight = \"The flaw is caused by missing authentication in the 'phpinfo.php' script\n when 'PMA_MINIMUM_COMMON' is defined. This can be exploited to gain knowledge\n of sensitive information by requesting the file directly.\";\ntag_solution = \"Upgrade to phpMyAdmin version 3.4.0-beta1 or later\n http://www.phpmyadmin.net/home_page/downloads.php\";\ntag_summary = \"The host is running phpMyAdmin and is prone to security bypass\n vulnerability.\";\n\nSCRIPT_OID = \"1.3.6.1.4.1.25623.1.0.801494\";\nCPE = \"cpe:/a:phpmyadmin:phpmyadmin\";\n\nif(description)\n{\n script_oid(SCRIPT_OID);\n script_version(\"$Revision: 5373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-02-20 17:27:48 +0100 (Mon, 20 Feb 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-12-27 09:55:05 +0100 (Mon, 27 Dec 2010)\");\n script_cve_id(\"CVE-2010-4481\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\");\n script_xref(name : \"URL\" , value : \"http://secunia.com/advisories/42485\");\n script_xref(name : \"URL\" , value : \"http://www.vupen.com/english/advisories/2010/3238\");\n script_xref(name : \"URL\" , value : \"http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n script_category(ACT_ATTACK);\n script_copyright(\"Copyright (C) 2010 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"secpod_phpmyadmin_detect_900129.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_require_keys(\"phpMyAdmin/installed\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n exit(0);\n}\n\n\ninclude(\"http_func.inc\");\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\n## Get phpMyAdmin Port\nif(!port = get_app_port(cpe:CPE, nvt:SCRIPT_OID))exit(0);\n\n## Get phpMyAdmin path\nif(dir = get_app_location(cpe:CPE, nvt:SCRIPT_OID, port:port))exit(0);\n\n## Construct the Attack Request\nsndReq = http_get(item:string(dir, \"/phpinfo.php\"), port:port);\nrcvRes = http_send_recv(port:port, data:sndReq);\n\n## Check the response\nif(\">Configuration<\" >< rcvRes && \">PHP Core<\" >< rcvRes &&\n \">Apache Environment<\" >< rcvRes)\n{\n security_message(port);\n exit(0);\n}\n", "title": "phpMyAdmin 'phpinfo.php' Security bypass Vulnerability", "type": "openvas", "viewCount": 3}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2018-09-02T00:05:10"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2010-4481"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "The host is running phpMyAdmin and is prone to security bypass\n vulnerability.", "edition": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "869be03773d147184a598adbb352e9ce3e08f35a30878b2f414c77633e8c143a", "hashmap": [{"hash": "aaf5de0d2f83a4d9d75f718271ef8ecb", "key": "sourceData"}, {"hash": "60c197695620d55fd3b5b17287d9cae5", "key": "references"}, {"hash": "1fab8e7abbc990fa76d6bc64ab26b530", "key": "title"}, {"hash": "e4f9dcc45e6b534cbaf7280344540a72", "key": "description"}, {"hash": "55199d25018fbdb9b50e6b64d444c3a4", "key": "naslFamily"}, {"hash": "7fe0cd4aa0b716b68d5d6a8b9f7fb207", "key": "pluginID"}, {"hash": "eb336a49bc8ed48fa4f2c4c0281a89db", "key": "published"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "8055448c8aafd510a869e608acf34a67", "key": "href"}, {"hash": "0ccf2ef98f8b8c1761c2281135d5f547", "key": "reporter"}, {"hash": "c2eea933d97966be19ceab275cbda399", "key": "modified"}, {"hash": "c08b0c20bd8c75470ae82e000000b109", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801494", "id": "OPENVAS:1361412562310801494", "lastseen": "2017-07-02T21:10:02", "modified": "2017-02-20T00:00:00", "naslFamily": "Web application abuses", "objectVersion": "1.3", "pluginID": "1361412562310801494", "published": "2010-12-27T00:00:00", "references": ["http://www.vupen.com/english/advisories/2010/3238", "http://secunia.com/advisories/42485", "http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php"], "reporter": "Copyright (C) 2010 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_phpmyadmin_security_bypass_vuln.nasl 5373 2017-02-20 16:27:48Z teissa $\n#\n# phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\n#\n# Authors:\n# Madhuri D <dmadhuri@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ntag_impact = \"Successful exploitation will let the unauthenticated attackers to display\n information related to PHP.\n Impact Level: Application\";\ntag_affected = \"phpMyAdmin version prior to 3.4.0-beta1.\";\ntag_insight = \"The flaw is caused by missing authentication in the 'phpinfo.php' script\n when 'PMA_MINIMUM_COMMON' is defined. This can be exploited to gain knowledge\n of sensitive information by requesting the file directly.\";\ntag_solution = \"Upgrade to phpMyAdmin version 3.4.0-beta1 or later\n http://www.phpmyadmin.net/home_page/downloads.php\";\ntag_summary = \"The host is running phpMyAdmin and is prone to security bypass\n vulnerability.\";\n\nSCRIPT_OID = \"1.3.6.1.4.1.25623.1.0.801494\";\nCPE = \"cpe:/a:phpmyadmin:phpmyadmin\";\n\nif(description)\n{\n script_oid(SCRIPT_OID);\n script_version(\"$Revision: 5373 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-02-20 17:27:48 +0100 (Mon, 20 Feb 2017) $\");\n script_tag(name:\"creation_date\", value:\"2010-12-27 09:55:05 +0100 (Mon, 27 Dec 2010)\");\n script_cve_id(\"CVE-2010-4481\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\");\n script_xref(name : \"URL\" , value : \"http://secunia.com/advisories/42485\");\n script_xref(name : \"URL\" , value : \"http://www.vupen.com/english/advisories/2010/3238\");\n script_xref(name : \"URL\" , value : \"http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n script_category(ACT_ATTACK);\n script_copyright(\"Copyright (C) 2010 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"secpod_phpmyadmin_detect_900129.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_require_keys(\"phpMyAdmin/installed\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n exit(0);\n}\n\n\ninclude(\"http_func.inc\");\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\n## Get phpMyAdmin Port\nif(!port = get_app_port(cpe:CPE, nvt:SCRIPT_OID))exit(0);\n\n## Get phpMyAdmin path\nif(dir = get_app_location(cpe:CPE, nvt:SCRIPT_OID, port:port))exit(0);\n\n## Construct the Attack Request\nsndReq = http_get(item:string(dir, \"/phpinfo.php\"), port:port);\nrcvRes = http_send_recv(port:port, data:sndReq);\n\n## Check the response\nif(\">Configuration<\" >< rcvRes && \">PHP Core<\" >< rcvRes &&\n \">Apache Environment<\" >< rcvRes)\n{\n security_message(port);\n exit(0);\n}\n", "title": "phpMyAdmin 'phpinfo.php' Security bypass Vulnerability", "type": "openvas", "viewCount": 2}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2017-07-02T21:10:02"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2010-4481"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "description": "The host is running phpMyAdmin and is prone to security bypass\n vulnerability.", "edition": 6, "enchantments": {"dependencies": {"modified": "2019-05-29T18:40:06", "references": [{"idList": ["OPENVAS:862963", "OPENVAS:136141256231068980", "OPENVAS:1361412562310831299", "OPENVAS:1361412562310862955", "OPENVAS:68980", "OPENVAS:1361412562310862963", "OPENVAS:862955", "OPENVAS:831299"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-2139-1:FDD12"], "type": "debian"}, {"idList": ["CVE-2010-4481"], "type": "cve"}, {"idList": ["FEDORA_2011-3733.NASL", "FEDORA_2011-3737.NASL", "DEBIAN_DSA-2139.NASL", "FEDORA_2011-3761.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:11328", "SECURITYVULNS:DOC:25426"], "type": "securityvulns"}, {"idList": ["PHPMYADMIN:PMASA-2010-10"], "type": "phpmyadmin"}]}, "score": {"modified": "2019-05-29T18:40:06", "value": 5.9, "vector": "NONE"}}, "hash": "f0a9b9114b6a1eacc7c87e3241cbd9ce3cfbf4c1815d5116cc0d8916bffff2c8", "hashmap": [{"hash": "c9c2c8330fa0287d904f478f657510c1", "key": "sourceData"}, {"hash": "1fab8e7abbc990fa76d6bc64ab26b530", "key": "title"}, {"hash": "a11030696cb76788b2cecdc563bc957d", "key": "references"}, {"hash": "a89198c45ce87f7ec9735a085150b708", "key": "cvss"}, {"hash": "e4f9dcc45e6b534cbaf7280344540a72", "key": "description"}, {"hash": "55199d25018fbdb9b50e6b64d444c3a4", "key": "naslFamily"}, {"hash": "7fe0cd4aa0b716b68d5d6a8b9f7fb207", "key": "pluginID"}, {"hash": "eb336a49bc8ed48fa4f2c4c0281a89db", "key": "published"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "8055448c8aafd510a869e608acf34a67", "key": "href"}, {"hash": "0ccf2ef98f8b8c1761c2281135d5f547", "key": "reporter"}, {"hash": "a66cc75acc15e0fcfada06afdba44b7b", "key": "modified"}, {"hash": "c08b0c20bd8c75470ae82e000000b109", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801494", "id": "OPENVAS:1361412562310801494", "lastseen": "2019-05-29T18:40:06", "modified": "2019-03-19T00:00:00", "naslFamily": "Web application abuses", "objectVersion": "1.3", "pluginID": "1361412562310801494", "published": "2010-12-27T00:00:00", "references": ["http://www.vupen.com/english/advisories/2010/3238", "http://secunia.com/advisories/42485", "http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php", "http://www.phpmyadmin.net/home_page/downloads.php"], "reporter": "Copyright (C) 2010 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_phpmyadmin_security_bypass_vuln.nasl 14331 2019-03-19 14:03:05Z jschulte $\n#\n# phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\n#\n# Authors:\n# Madhuri D <dmadhuri@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nCPE = \"cpe:/a:phpmyadmin:phpmyadmin\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801494\");\n script_version(\"$Revision: 14331 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-19 15:03:05 +0100 (Tue, 19 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2010-12-27 09:55:05 +0100 (Mon, 27 Dec 2010)\");\n script_cve_id(\"CVE-2010-4481\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\");\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/42485\");\n script_xref(name:\"URL\", value:\"http://www.vupen.com/english/advisories/2010/3238\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/downloads.php\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n script_category(ACT_ATTACK);\n script_copyright(\"Copyright (C) 2010 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"secpod_phpmyadmin_detect_900129.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_mandatory_keys(\"phpMyAdmin/installed\");\n script_tag(name:\"impact\", value:\"Successful exploitation will let the unauthenticated attackers to display\n information related to PHP.\");\n script_tag(name:\"affected\", value:\"phpMyAdmin version prior to 3.4.0-beta1.\");\n script_tag(name:\"insight\", value:\"The flaw is caused by missing authentication in the 'phpinfo.php' script\n when 'PMA_MINIMUM_COMMON' is defined. This can be exploited to gain knowledge\n of sensitive information by requesting the file directly.\");\n script_tag(name:\"solution\", value:\"Upgrade to phpMyAdmin version 3.4.0-beta1 or later\");\n script_tag(name:\"summary\", value:\"The host is running phpMyAdmin and is prone to security bypass\n vulnerability.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\n\ninclude(\"http_func.inc\");\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif(!port = get_app_port(cpe:CPE))exit(0);\n\nif(dir = get_app_location(cpe:CPE, port:port))exit(0);\n\nsndReq = http_get(item:string(dir, \"/phpinfo.php\"), port:port);\nrcvRes = http_send_recv(port:port, data:sndReq);\n\nif(\">Configuration<\" >< rcvRes && \">PHP Core<\" >< rcvRes &&\n \">Apache Environment<\" >< rcvRes)\n{\n security_message(port);\n exit(0);\n}\n", "title": "phpMyAdmin 'phpinfo.php' Security bypass Vulnerability", "type": "openvas", "viewCount": 25}, "differentElements": ["modified", "sourceData"], "edition": 6, "lastseen": "2019-05-29T18:40:06"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2010-4481"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "The host is running phpMyAdmin and is prone to security bypass\n vulnerability.", "edition": 4, "enchantments": {"dependencies": {"modified": "2018-09-24T18:21:21", "references": [{"idList": ["OPENVAS:862963", "OPENVAS:136141256231068980", "OPENVAS:1361412562310831299", "OPENVAS:1361412562310862955", "OPENVAS:68980", "OPENVAS:1361412562310862963", "OPENVAS:862955", "OPENVAS:831299"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-2139-1:FDD12"], "type": "debian"}, {"idList": ["CVE-2010-4481"], "type": "cve"}, {"idList": ["FEDORA_2011-3733.NASL", "FEDORA_2011-3737.NASL", "DEBIAN_DSA-2139.NASL", "FEDORA_2011-3761.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:11328", "SECURITYVULNS:DOC:25426"], "type": "securityvulns"}, {"idList": ["PHPMYADMIN:PMASA-2010-10"], "type": "phpmyadmin"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "d226e0b0470ad6dd9273a7452e3c2b8012726c8448b6fd5020d869a220da4566", "hashmap": [{"hash": "60c197695620d55fd3b5b17287d9cae5", "key": "references"}, {"hash": "1fab8e7abbc990fa76d6bc64ab26b530", "key": "title"}, {"hash": "e4f9dcc45e6b534cbaf7280344540a72", "key": "description"}, {"hash": "55199d25018fbdb9b50e6b64d444c3a4", "key": "naslFamily"}, {"hash": "7fe0cd4aa0b716b68d5d6a8b9f7fb207", "key": "pluginID"}, {"hash": "eb336a49bc8ed48fa4f2c4c0281a89db", "key": "published"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "8055448c8aafd510a869e608acf34a67", "key": "href"}, {"hash": "0ccf2ef98f8b8c1761c2281135d5f547", "key": "reporter"}, {"hash": "0647c3e4eef1ec26acc5fbc751fc9483", "key": "sourceData"}, {"hash": "22c435fa8c42ad263fdea78451c188f0", "key": "modified"}, {"hash": "c08b0c20bd8c75470ae82e000000b109", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801494", "id": "OPENVAS:1361412562310801494", "lastseen": "2018-09-24T18:21:21", "modified": "2018-09-22T00:00:00", "naslFamily": "Web application abuses", "objectVersion": "1.3", "pluginID": "1361412562310801494", "published": "2010-12-27T00:00:00", "references": ["http://www.vupen.com/english/advisories/2010/3238", "http://secunia.com/advisories/42485", "http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php"], "reporter": "Copyright (C) 2010 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_phpmyadmin_security_bypass_vuln.nasl 11553 2018-09-22 14:22:01Z cfischer $\n#\n# phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\n#\n# Authors:\n# Madhuri D <dmadhuri@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nCPE = \"cpe:/a:phpmyadmin:phpmyadmin\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801494\");\n script_version(\"$Revision: 11553 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-22 16:22:01 +0200 (Sat, 22 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2010-12-27 09:55:05 +0100 (Mon, 27 Dec 2010)\");\n script_cve_id(\"CVE-2010-4481\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\");\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/42485\");\n script_xref(name:\"URL\", value:\"http://www.vupen.com/english/advisories/2010/3238\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n script_category(ACT_ATTACK);\n script_copyright(\"Copyright (C) 2010 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"secpod_phpmyadmin_detect_900129.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_mandatory_keys(\"phpMyAdmin/installed\");\n script_tag(name:\"impact\", value:\"Successful exploitation will let the unauthenticated attackers to display\n information related to PHP.\");\n script_tag(name:\"affected\", value:\"phpMyAdmin version prior to 3.4.0-beta1.\");\n script_tag(name:\"insight\", value:\"The flaw is caused by missing authentication in the 'phpinfo.php' script\n when 'PMA_MINIMUM_COMMON' is defined. This can be exploited to gain knowledge\n of sensitive information by requesting the file directly.\");\n script_tag(name:\"solution\", value:\"Upgrade to phpMyAdmin version 3.4.0-beta1 or later\n http://www.phpmyadmin.net/home_page/downloads.php\");\n script_tag(name:\"summary\", value:\"The host is running phpMyAdmin and is prone to security bypass\n vulnerability.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\n\ninclude(\"http_func.inc\");\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif(!port = get_app_port(cpe:CPE))exit(0);\n\nif(dir = get_app_location(cpe:CPE, port:port))exit(0);\n\nsndReq = http_get(item:string(dir, \"/phpinfo.php\"), port:port);\nrcvRes = http_send_recv(port:port, data:sndReq);\n\nif(\">Configuration<\" >< rcvRes && \">PHP Core<\" >< rcvRes &&\n \">Apache Environment<\" >< rcvRes)\n{\n security_message(port);\n exit(0);\n}\n", "title": "phpMyAdmin 'phpinfo.php' Security bypass Vulnerability", "type": "openvas", "viewCount": 7}, "differentElements": ["references", "modified", "sourceData"], "edition": 4, "lastseen": "2018-09-24T18:21:21"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2010-4481"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "The host is running phpMyAdmin and is prone to security bypass\n vulnerability.", "edition": 5, "enchantments": {"dependencies": {"modified": "2019-03-20T22:45:24", "references": [{"idList": ["OPENVAS:862963", "OPENVAS:136141256231068980", "OPENVAS:1361412562310831299", "OPENVAS:1361412562310862955", "OPENVAS:68980", "OPENVAS:1361412562310862963", "OPENVAS:862955", "OPENVAS:831299"], "type": "openvas"}, {"idList": ["DEBIAN:DSA-2139-1:FDD12"], "type": "debian"}, {"idList": ["CVE-2010-4481"], "type": "cve"}, {"idList": ["FEDORA_2011-3733.NASL", "FEDORA_2011-3737.NASL", "DEBIAN_DSA-2139.NASL", "FEDORA_2011-3761.NASL"], "type": "nessus"}, {"idList": ["SECURITYVULNS:VULN:11328", "SECURITYVULNS:DOC:25426"], "type": "securityvulns"}, {"idList": ["PHPMYADMIN:PMASA-2010-10"], "type": "phpmyadmin"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "e0bf947906f4c1ed34c7297fc9228c941c2c6545118df8d32bf8e1dbadedaa6b", "hashmap": [{"hash": "c9c2c8330fa0287d904f478f657510c1", "key": "sourceData"}, {"hash": "1fab8e7abbc990fa76d6bc64ab26b530", "key": "title"}, {"hash": "a11030696cb76788b2cecdc563bc957d", "key": "references"}, {"hash": "e4f9dcc45e6b534cbaf7280344540a72", "key": "description"}, {"hash": "55199d25018fbdb9b50e6b64d444c3a4", "key": "naslFamily"}, {"hash": "7fe0cd4aa0b716b68d5d6a8b9f7fb207", "key": "pluginID"}, {"hash": "eb336a49bc8ed48fa4f2c4c0281a89db", "key": "published"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "8055448c8aafd510a869e608acf34a67", "key": "href"}, {"hash": "0ccf2ef98f8b8c1761c2281135d5f547", "key": "reporter"}, {"hash": "a66cc75acc15e0fcfada06afdba44b7b", "key": "modified"}, {"hash": "c08b0c20bd8c75470ae82e000000b109", "key": "cvelist"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801494", "id": "OPENVAS:1361412562310801494", "lastseen": "2019-03-20T22:45:24", "modified": "2019-03-19T00:00:00", "naslFamily": "Web application abuses", "objectVersion": "1.3", "pluginID": "1361412562310801494", "published": "2010-12-27T00:00:00", "references": ["http://www.vupen.com/english/advisories/2010/3238", "http://secunia.com/advisories/42485", "http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php", "http://www.phpmyadmin.net/home_page/downloads.php"], "reporter": "Copyright (C) 2010 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_phpmyadmin_security_bypass_vuln.nasl 14331 2019-03-19 14:03:05Z jschulte $\n#\n# phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\n#\n# Authors:\n# Madhuri D <dmadhuri@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nCPE = \"cpe:/a:phpmyadmin:phpmyadmin\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801494\");\n script_version(\"$Revision: 14331 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-19 15:03:05 +0100 (Tue, 19 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2010-12-27 09:55:05 +0100 (Mon, 27 Dec 2010)\");\n script_cve_id(\"CVE-2010-4481\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\");\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/42485\");\n script_xref(name:\"URL\", value:\"http://www.vupen.com/english/advisories/2010/3238\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/downloads.php\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n script_category(ACT_ATTACK);\n script_copyright(\"Copyright (C) 2010 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"secpod_phpmyadmin_detect_900129.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_mandatory_keys(\"phpMyAdmin/installed\");\n script_tag(name:\"impact\", value:\"Successful exploitation will let the unauthenticated attackers to display\n information related to PHP.\");\n script_tag(name:\"affected\", value:\"phpMyAdmin version prior to 3.4.0-beta1.\");\n script_tag(name:\"insight\", value:\"The flaw is caused by missing authentication in the 'phpinfo.php' script\n when 'PMA_MINIMUM_COMMON' is defined. This can be exploited to gain knowledge\n of sensitive information by requesting the file directly.\");\n script_tag(name:\"solution\", value:\"Upgrade to phpMyAdmin version 3.4.0-beta1 or later\");\n script_tag(name:\"summary\", value:\"The host is running phpMyAdmin and is prone to security bypass\n vulnerability.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\n\ninclude(\"http_func.inc\");\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif(!port = get_app_port(cpe:CPE))exit(0);\n\nif(dir = get_app_location(cpe:CPE, port:port))exit(0);\n\nsndReq = http_get(item:string(dir, \"/phpinfo.php\"), port:port);\nrcvRes = http_send_recv(port:port, data:sndReq);\n\nif(\">Configuration<\" >< rcvRes && \">PHP Core<\" >< rcvRes &&\n \">Apache Environment<\" >< rcvRes)\n{\n security_message(port);\n exit(0);\n}\n", "title": "phpMyAdmin 'phpinfo.php' Security bypass Vulnerability", "type": "openvas", "viewCount": 12}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2019-03-20T22:45:24"}], "edition": 7, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "c08b0c20bd8c75470ae82e000000b109"}, {"key": "cvss", "hash": "a89198c45ce87f7ec9735a085150b708"}, {"key": "description", "hash": "e4f9dcc45e6b534cbaf7280344540a72"}, {"key": "href", "hash": "8055448c8aafd510a869e608acf34a67"}, {"key": "modified", "hash": "ba37df9fa7b81cc13ef46305ab056420"}, {"key": "naslFamily", "hash": "55199d25018fbdb9b50e6b64d444c3a4"}, {"key": "pluginID", "hash": "7fe0cd4aa0b716b68d5d6a8b9f7fb207"}, {"key": "published", "hash": "eb336a49bc8ed48fa4f2c4c0281a89db"}, {"key": "references", "hash": "a11030696cb76788b2cecdc563bc957d"}, {"key": "reporter", "hash": "0ccf2ef98f8b8c1761c2281135d5f547"}, {"key": "sourceData", "hash": "4bd521905c54e8f225a55d4b144053d7"}, {"key": "title", "hash": "1fab8e7abbc990fa76d6bc64ab26b530"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "9a8983fe0be40c9a300564d09c680b51d04b1ef9fd7ced9b50a99ce1232b7776", "viewCount": 32, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2010-4481"]}, {"type": "phpmyadmin", "idList": ["PHPMYADMIN:PMASA-2010-10"]}, {"type": "openvas", "idList": ["OPENVAS:831299", "OPENVAS:862963", "OPENVAS:1361412562310862955", "OPENVAS:1361412562310831299", "OPENVAS:68980", "OPENVAS:136141256231068980", "OPENVAS:1361412562310862963", "OPENVAS:862955"]}, {"type": "nessus", "idList": ["FEDORA_2011-3733.NASL", "FEDORA_2011-3761.NASL", "DEBIAN_DSA-2139.NASL", "FEDORA_2011-3737.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:25426", "SECURITYVULNS:VULN:11328"]}, {"type": "debian", "idList": ["DEBIAN:DSA-2139-1:FDD12"]}], "modified": "2019-12-06T16:46:54", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2019-12-06T16:46:54", "rev": 2}, "vulnersScore": 6.1}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\n#\n# Authors:\n# Madhuri D <dmadhuri@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nCPE = \"cpe:/a:phpmyadmin:phpmyadmin\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801494\");\n script_version(\"2019-12-05T15:10:00+0000\");\n script_tag(name:\"last_modification\", value:\"2019-12-05 15:10:00 +0000 (Thu, 05 Dec 2019)\");\n script_tag(name:\"creation_date\", value:\"2010-12-27 09:55:05 +0100 (Mon, 27 Dec 2010)\");\n script_cve_id(\"CVE-2010-4481\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"phpMyAdmin 'phpinfo.php' Security bypass Vulnerability\");\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/42485\");\n script_xref(name:\"URL\", value:\"http://www.vupen.com/english/advisories/2010/3238\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/downloads.php\");\n script_xref(name:\"URL\", value:\"http://www.phpmyadmin.net/home_page/security/PMASA-2010-10.php\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n script_category(ACT_ATTACK);\n script_copyright(\"Copyright (C) 2010 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"secpod_phpmyadmin_detect_900129.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_mandatory_keys(\"phpMyAdmin/installed\");\n script_tag(name:\"impact\", value:\"Successful exploitation will let the unauthenticated attackers to display\n information related to PHP.\");\n script_tag(name:\"affected\", value:\"phpMyAdmin version prior to 3.4.0-beta1.\");\n script_tag(name:\"insight\", value:\"The flaw is caused by missing authentication in the 'phpinfo.php' script\n when 'PMA_MINIMUM_COMMON' is defined. This can be exploited to gain knowledge\n of sensitive information by requesting the file directly.\");\n script_tag(name:\"solution\", value:\"Upgrade to phpMyAdmin version 3.4.0-beta1 or later\");\n script_tag(name:\"summary\", value:\"The host is running phpMyAdmin and is prone to security bypass\n vulnerability.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\n\ninclude(\"http_func.inc\");\ninclude(\"host_details.inc\");\n\nif(!port = get_app_port(cpe:CPE))exit(0);\n\nif(dir = get_app_location(cpe:CPE, port:port))exit(0);\n\nsndReq = http_get(item:string(dir, \"/phpinfo.php\"), port:port);\nrcvRes = http_send_recv(port:port, data:sndReq);\n\nif(\">Configuration<\" >< rcvRes && \">PHP Core<\" >< rcvRes &&\n \">Apache Environment<\" >< rcvRes)\n{\n security_message(port);\n exit(0);\n}\n", "naslFamily": "Web application abuses", "pluginID": "1361412562310801494", "scheme": null}

{"cve": [{"lastseen": "2019-05-29T18:10:32", "bulletinFamily": "NVD", "description": "phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function.", "modified": "2011-01-28T05:00:00", "id": "CVE-2010-4481", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4481", "published": "2010-12-17T19:00:00", "title": "CVE-2010-4481", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "phpmyadmin": [{"lastseen": "2019-05-29T17:20:12", "bulletinFamily": "software", "description": "## PMASA-2010-10\n\n**Announcement-ID:** PMASA-2010-10\n\n**Date:** 2010-12-07\n\n**Updated:** 2010-02-16\n\n### Summary\n\nPossible information disclosure.\n\n### Description\n\nUnauthenticated user was able to display phpinfo output if phpMyAdmin was enabled to show it.\n\n### Severity\n\nThe issue is considered minor, because this feature is not enabled in default installation.\n\n### Mitigation factor\n\nDefault installation is not affected, because $$cfg['ShowPhpInfo'] is false by default.\n\n### Affected Versions\n\nAll versions prior to 3.4.0-beta1.\n\n### Solution\n\nUpgrade to phpMyAdmin 3.4.0-beta1 or newer or apply patch listed below. Due to its minor impact, a fix will be included in the next regular release which is 3.3.10.\n\n### References\n\nThis issue was reported by [J\u00f6rg Sommer](<mailto:joerg@alea.gnuu.de>).\n\nAssigned CVE ids: [CVE-2010-4481](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4481>)\n\nCWE ids: [CWE-661](<https://cwe.mitre.org/data/definitions/661.html>) [CWE-200](<https://cwe.mitre.org/data/definitions/200.html>)\n\n### Patches\n\nThe following commits have been made to fix this issue:\n\n * [4d9fd005671b05c4d74615d5939ed45e4d019e4c](<https://github.com/phpmyadmin/phpmyadmin/commit/4d9fd005671b05c4d74615d5939ed45e4d019e4c>)\n\nThe following commits have been made on the 2.11 branch to fix this issue:\n\n * [373a6626ade37c0fee1dfc7c757ca55c7652874b](<https://github.com/phpmyadmin/phpmyadmin/commit/373a6626ade37c0fee1dfc7c757ca55c7652874b>)\n\nThe following commits have been made on the 3.3 branch to fix this issue:\n\n * [8928900532d111e849362b6359571a3b079eb9ea](<https://github.com/phpmyadmin/phpmyadmin/commit/8928900532d111e849362b6359571a3b079eb9ea>)\n\n### More information\n\nFor further information and in case of questions, please contact the phpMyAdmin team. Our website is [ phpmyadmin.net](<https://www.phpmyadmin.net/>). \n", "modified": "2010-02-16T00:00:00", "published": "2010-12-07T00:00:00", "id": "PHPMYADMIN:PMASA-2010-10", "href": "https://www.phpmyadmin.net/security/PMASA-2010-10/", "title": "Possible information disclosure.", "type": "phpmyadmin", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "openvas": [{"lastseen": "2017-07-25T10:55:44", "bulletinFamily": "scanner", "description": "Check for the Version of phpMyAdmin", "modified": "2017-07-10T00:00:00", "published": "2011-04-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=862963", "id": "OPENVAS:862963", "title": "Fedora Update for phpMyAdmin FEDORA-2011-3733", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for phpMyAdmin FEDORA-2011-3733\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"phpMyAdmin on Fedora 13\";\ntag_insight = \"phpMyAdmin is a tool written in PHP intended to handle the administration of\n MySQL over the Web. Currently it can create and drop databases,\n create/drop/alter tables, delete/edit/add fields, execute any SQL statement,\n manage keys on fields, manage privileges, export data into various formats and\n is available in over 55 languages.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/057007.html\");\n script_id(862963);\n script_version(\"$Revision: 6626 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:30:10 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-04-01 15:34:04 +0200 (Fri, 01 Apr 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"FEDORA\", value: \"2011-3733\");\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Fedora Update for phpMyAdmin FEDORA-2011-3733\");\n\n script_summary(\"Check for the Version of phpMyAdmin\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC13\")\n{\n\n if ((res = isrpmvuln(pkg:\"phpMyAdmin\", rpm:\"phpMyAdmin~3.3.10~1.fc13\", rls:\"FC13\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-07-25T10:55:27", "bulletinFamily": "scanner", "description": "Check for the Version of phpMyAdmin", "modified": "2017-07-10T00:00:00", "published": "2011-04-01T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=862955", "id": "OPENVAS:862955", "title": "Fedora Update for phpMyAdmin FEDORA-2011-3737", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for phpMyAdmin FEDORA-2011-3737\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"phpMyAdmin on Fedora 14\";\ntag_insight = \"phpMyAdmin is a tool written in PHP intended to handle the administration of\n MySQL over the Web. Currently it can create and drop databases,\n create/drop/alter tables, delete/edit/add fields, execute any SQL statement,\n manage keys on fields, manage privileges, export data into various formats and\n is available in over 55 languages.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/057005.html\");\n script_id(862955);\n script_version(\"$Revision: 6626 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:30:10 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-04-01 15:34:04 +0200 (Fri, 01 Apr 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"FEDORA\", value: \"2011-3737\");\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Fedora Update for phpMyAdmin FEDORA-2011-3737\");\n\n script_summary(\"Check for the Version of phpMyAdmin\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC14\")\n{\n\n if ((res = isrpmvuln(pkg:\"phpMyAdmin\", rpm:\"phpMyAdmin~3.3.10~1.fc14\", rls:\"FC14\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-05-29T18:39:29", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2011-04-01T00:00:00", "id": "OPENVAS:1361412562310862955", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310862955", "title": "Fedora Update for phpMyAdmin FEDORA-2011-3737", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for phpMyAdmin FEDORA-2011-3737\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/057005.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.862955\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-04-01 15:34:04 +0200 (Fri, 01 Apr 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name:\"FEDORA\", value:\"2011-3737\");\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Fedora Update for phpMyAdmin FEDORA-2011-3737\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'phpMyAdmin'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC14\");\n script_tag(name:\"affected\", value:\"phpMyAdmin on Fedora 14\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC14\")\n{\n\n if ((res = isrpmvuln(pkg:\"phpMyAdmin\", rpm:\"phpMyAdmin~3.3.10~1.fc14\", rls:\"FC14\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:39:42", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-14T00:00:00", "published": "2011-01-11T00:00:00", "id": "OPENVAS:1361412562310831299", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310831299", "title": "Mandriva Update for phpmyadmin MDVSA-2011:000 (phpmyadmin)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for phpmyadmin MDVSA-2011:000 (phpmyadmin)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.mandriva.com/security-announce/2011-01/msg00001.php\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.831299\");\n script_version(\"$Revision: 14188 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-14 15:14:02 +0100 (Thu, 14 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-11 16:07:49 +0100 (Tue, 11 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name:\"MDVSA\", value:\"2011:000\");\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Mandriva Update for phpmyadmin MDVSA-2011:000 (phpmyadmin)\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'phpmyadmin'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\", re:\"ssh/login/release=MNDK_mes5\");\n script_tag(name:\"affected\", value:\"phpmyadmin on Mandriva Enterprise Server 5,\n Mandriva Enterprise Server 5/X86_64\");\n script_tag(name:\"insight\", value:\"Multiple vulnerabilities has been found and corrected in phpmyadmin:\n\n error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers\n to conduct cross-site scripting (XSS) attacks via a crafted BBcode\n tag containing @ characters, as demonstrated using [a@url@page]\n (CVE-2010-4480).\n\n phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass\n authentication and obtain sensitive information via a direct request\n to phpinfo.php, which calls the phpinfo function (CVE-2010-4481).\n\n This upgrade provides the latest phpmyadmin version for MES5 (3.3.9)\n and patches the version for CS4 to address these vulnerabilities.\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"MNDK_mes5\")\n{\n\n if ((res = isrpmvuln(pkg:\"phpmyadmin\", rpm:\"phpmyadmin~3.3.9~0.1mdvmes5.1\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2017-07-24T12:55:49", "bulletinFamily": "scanner", "description": "Check for the Version of phpmyadmin", "modified": "2017-07-06T00:00:00", "published": "2011-01-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=831299", "id": "OPENVAS:831299", "title": "Mandriva Update for phpmyadmin MDVSA-2011:000 (phpmyadmin)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for phpmyadmin MDVSA-2011:000 (phpmyadmin)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Multiple vulnerabilities has been found and corrected in phpmyadmin:\n\n error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers\n to conduct cross-site scripting (XSS) attacks via a crafted BBcode\n tag containing @ characters, as demonstrated using [a@url@page]\n (CVE-2010-4480).\n \n phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass\n authentication and obtain sensitive information via a direct request\n to phpinfo.php, which calls the phpinfo function (CVE-2010-4481).\n \n This upgrade provides the latest phpmyadmin version for MES5 (3.3.9)\n and patches the version for CS4 to address these vulnerabilities.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"phpmyadmin on Mandriva Enterprise Server 5,\n Mandriva Enterprise Server 5/X86_64\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2011-01/msg00001.php\");\n script_id(831299);\n script_version(\"$Revision: 6565 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 14:56:06 +0200 (Thu, 06 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-11 16:07:49 +0100 (Tue, 11 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name: \"MDVSA\", value: \"2011:000\");\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Mandriva Update for phpmyadmin MDVSA-2011:000 (phpmyadmin)\");\n\n script_summary(\"Check for the Version of phpmyadmin\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2010 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_mes5\")\n{\n\n if ((res = isrpmvuln(pkg:\"phpmyadmin\", rpm:\"phpmyadmin~3.3.9~0.1mdvmes5.1\", rls:\"MNDK_mes5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-05-29T18:39:53", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2011-04-01T00:00:00", "id": "OPENVAS:1361412562310862963", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310862963", "title": "Fedora Update for phpMyAdmin FEDORA-2011-3733", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for phpMyAdmin FEDORA-2011-3733\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/057007.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.862963\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-04-01 15:34:04 +0200 (Fri, 01 Apr 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_xref(name:\"FEDORA\", value:\"2011-3733\");\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Fedora Update for phpMyAdmin FEDORA-2011-3733\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'phpMyAdmin'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC13\");\n script_tag(name:\"affected\", value:\"phpMyAdmin on Fedora 13\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC13\")\n{\n\n if ((res = isrpmvuln(pkg:\"phpMyAdmin\", rpm:\"phpMyAdmin~3.3.10~1.fc13\", rls:\"FC13\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2017-07-24T12:55:50", "bulletinFamily": "scanner", "description": "The remote host is missing an update to phpmyadmin\nannounced via advisory DSA 2139-1.", "modified": "2017-07-07T00:00:00", "published": "2011-03-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=68980", "id": "OPENVAS:68980", "title": "Debian Security Advisory DSA 2139-1 (phpmyadmin)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2139_1.nasl 6613 2017-07-07 12:08:40Z cfischer $\n# Description: Auto-generated from advisory DSA 2139-1 (phpmyadmin)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Several vulnerabilities have been discovered in phpMyAdmin, a tool\nto administer MySQL over the web. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2010-4329\n\nCross site scripting was possible in search, that allowed\na remote attacker to inject arbitrary web script or HTML.\n\nCVE-2010-4480\n\nCross site scripting was possible in errors, that allowed\na remote attacker to inject arbitrary web script or HTML.\n\nCVE-2010-4481\n\nDisplay of PHP's phpinfo() function was available to world, but only\nif this functionality had been enabled (defaults to off). This may\nleak some information about the host system.\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 2.11.8.1-5+lenny7.\n\nFor the testing (squeeze) and unstable distribution (sid), these problems\nhave been fixed in version 3.3.7-3.\n\nWe recommend that you upgrade your phpmyadmin package.\";\ntag_summary = \"The remote host is missing an update to phpmyadmin\nannounced via advisory DSA 2139-1.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202139-1\";\n\n\nif(description)\n{\n script_id(68980);\n script_version(\"$Revision: 6613 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:08:40 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-03-07 16:04:02 +0100 (Mon, 07 Mar 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cve_id(\"CVE-2010-4329\", \"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Debian Security Advisory DSA 2139-1 (phpmyadmin)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"phpmyadmin\", ver:\"2.11.8.1-5+lenny7\", rls:\"DEB5.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2019-05-29T18:39:30", "bulletinFamily": "scanner", "description": "The remote host is missing an update to phpmyadmin\nannounced via advisory DSA 2139-1.", "modified": "2019-03-18T00:00:00", "published": "2011-03-07T00:00:00", "id": "OPENVAS:136141256231068980", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231068980", "title": "Debian Security Advisory DSA 2139-1 (phpmyadmin)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_2139_1.nasl 14275 2019-03-18 14:39:45Z cfischer $\n# Description: Auto-generated from advisory DSA 2139-1 (phpmyadmin)\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.68980\");\n script_version(\"$Revision: 14275 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-18 15:39:45 +0100 (Mon, 18 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2011-03-07 16:04:02 +0100 (Mon, 07 Mar 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_cve_id(\"CVE-2010-4329\", \"CVE-2010-4480\", \"CVE-2010-4481\");\n script_name(\"Debian Security Advisory DSA 2139-1 (phpmyadmin)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB5\");\n script_xref(name:\"URL\", value:\"https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202139-1\");\n script_tag(name:\"insight\", value:\"Several vulnerabilities have been discovered in phpMyAdmin, a tool\nto administer MySQL over the web. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2010-4329\n\nCross site scripting was possible in search, that allowed\na remote attacker to inject arbitrary web script or HTML.\n\nCVE-2010-4480\n\nCross site scripting was possible in errors, that allowed\na remote attacker to inject arbitrary web script or HTML.\n\nCVE-2010-4481\n\nDisplay of PHP's phpinfo() function was available to world, but only\nif this functionality had been enabled (defaults to off). This may\nleak some information about the host system.\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 2.11.8.1-5+lenny7.\n\nFor the testing (squeeze) and unstable distribution (sid), these problems\nhave been fixed in version 3.3.7-3.\");\n\n script_tag(name:\"solution\", value:\"We recommend that you upgrade your phpmyadmin package.\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update to phpmyadmin\nannounced via advisory DSA 2139-1.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"phpmyadmin\", ver:\"2.11.8.1-5+lenny7\", rls:\"DEB5\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "nessus": [{"lastseen": "2020-08-01T01:35:50", "bulletinFamily": "scanner", "description": "Changes for 3.3.10.0 (2011-03-19)\n\n - [structure] Aria table size printed as unknown, thanks\n to erickoh75 - erickoh75\n\n - [structure] Ordering by size gives incorrect results,\n thanks to Madhura Jayaratne - madhuracj\n\n - [core] 0 row(s) affected\n\n - [core] Edit relational page and page number\n\n - [security] Minor security fixes, see PMASA-2010-9 and\n PMASA-2010-10\n\n - [lang] German update, thanks to jannicars at\n users.sourceforge.net.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2020-08-02T00:00:00", "id": "FEDORA_2011-3761.NASL", "href": "https://www.tenable.com/plugins/nessus/52984", "published": "2011-03-27T00:00:00", "title": "Fedora 15 : phpMyAdmin-3.3.10-1.fc15 (2011-3761)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2011-3761.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(52984);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/08/02 13:32:35\");\n\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_bugtraq_id(45633);\n script_xref(name:\"FEDORA\", value:\"2011-3761\");\n\n script_name(english:\"Fedora 15 : phpMyAdmin-3.3.10-1.fc15 (2011-3761)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Changes for 3.3.10.0 (2011-03-19)\n\n - [structure] Aria table size printed as unknown, thanks\n to erickoh75 - erickoh75\n\n - [structure] Ordering by size gives incorrect results,\n thanks to Madhura Jayaratne - madhuracj\n\n - [core] 0 row(s) affected\n\n - [core] Edit relational page and page number\n\n - [security] Minor security fixes, see PMASA-2010-9 and\n PMASA-2010-10\n\n - [lang] German update, thanks to jannicars at\n users.sourceforge.net.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=661335\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=662366\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-March/056730.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?da9c18e4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected phpMyAdmin package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:phpMyAdmin\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:15\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/03/27\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^15([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 15.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC15\", reference:\"phpMyAdmin-3.3.10-1.fc15\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"phpMyAdmin\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T01:35:50", "bulletinFamily": "scanner", "description": "Changes for 3.3.10.0 (2011-03-19)\n\n - [structure] Aria table size printed as unknown, thanks\n to erickoh75 - erickoh75\n\n - [structure] Ordering by size gives incorrect results,\n thanks to Madhura Jayaratne - madhuracj\n\n - [core] 0 row(s) affected\n\n - [core] Edit relational page and page number\n\n - [security] Minor security fixes, see PMASA-2010-9 and\n PMASA-2010-10\n\n - [lang] German update, thanks to jannicars at\n users.sourceforge.net.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2020-08-02T00:00:00", "id": "FEDORA_2011-3737.NASL", "href": "https://www.tenable.com/plugins/nessus/53214", "published": "2011-03-30T00:00:00", "title": "Fedora 14 : phpMyAdmin-3.3.10-1.fc14 (2011-3737)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2011-3737.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53214);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/08/02 13:32:35\");\n\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_bugtraq_id(45633);\n script_xref(name:\"FEDORA\", value:\"2011-3737\");\n\n script_name(english:\"Fedora 14 : phpMyAdmin-3.3.10-1.fc14 (2011-3737)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Changes for 3.3.10.0 (2011-03-19)\n\n - [structure] Aria table size printed as unknown, thanks\n to erickoh75 - erickoh75\n\n - [structure] Ordering by size gives incorrect results,\n thanks to Madhura Jayaratne - madhuracj\n\n - [core] 0 row(s) affected\n\n - [core] Edit relational page and page number\n\n - [security] Minor security fixes, see PMASA-2010-9 and\n PMASA-2010-10\n\n - [lang] German update, thanks to jannicars at\n users.sourceforge.net.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=661335\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=662366\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-March/057005.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?00806d5f\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected phpMyAdmin package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:phpMyAdmin\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:14\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/03/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^14([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 14.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC14\", reference:\"phpMyAdmin-3.3.10-1.fc14\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"phpMyAdmin\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T01:35:50", "bulletinFamily": "scanner", "description": "Changes for 3.3.10.0 (2011-03-19)\n\n - [structure] Aria table size printed as unknown, thanks\n to erickoh75 - erickoh75\n\n - [structure] Ordering by size gives incorrect results,\n thanks to Madhura Jayaratne - madhuracj\n\n - [core] 0 row(s) affected\n\n - [core] Edit relational page and page number\n\n - [security] Minor security fixes, see PMASA-2010-9 and\n PMASA-2010-10\n\n - [lang] German update, thanks to jannicars at\n users.sourceforge.net.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2020-08-02T00:00:00", "id": "FEDORA_2011-3733.NASL", "href": "https://www.tenable.com/plugins/nessus/53213", "published": "2011-03-30T00:00:00", "title": "Fedora 13 : phpMyAdmin-3.3.10-1.fc13 (2011-3733)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2011-3733.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53213);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/08/02 13:32:35\");\n\n script_cve_id(\"CVE-2010-4480\", \"CVE-2010-4481\");\n script_bugtraq_id(45633);\n script_xref(name:\"FEDORA\", value:\"2011-3733\");\n\n script_name(english:\"Fedora 13 : phpMyAdmin-3.3.10-1.fc13 (2011-3733)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Changes for 3.3.10.0 (2011-03-19)\n\n - [structure] Aria table size printed as unknown, thanks\n to erickoh75 - erickoh75\n\n - [structure] Ordering by size gives incorrect results,\n thanks to Madhura Jayaratne - madhuracj\n\n - [core] 0 row(s) affected\n\n - [core] Edit relational page and page number\n\n - [security] Minor security fixes, see PMASA-2010-9 and\n PMASA-2010-10\n\n - [lang] German update, thanks to jannicars at\n users.sourceforge.net.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=661335\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=662366\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-March/057007.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ed89874b\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected phpMyAdmin package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:phpMyAdmin\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:13\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/03/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^13([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 13.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC13\", reference:\"phpMyAdmin-3.3.10-1.fc13\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"phpMyAdmin\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T01:17:36", "bulletinFamily": "scanner", "description": "Several vulnerabilities have been discovered in phpMyAdmin, a tool to\nadminister MySQL over the web. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CVE-2010-4329\n Cross site scripting was possible in search, that\n allowed a remote attacker to inject arbitrary web script\n or HTML.\n\n - CVE-2010-4480\n Cross site scripting was possible in errors, that\n allowed a remote attacker to inject arbitrary web script\n or HTML.\n\n - CVE-2010-4481\n Display of PHP", "modified": "2020-08-02T00:00:00", "id": "DEBIAN_DSA-2139.NASL", "href": "https://www.tenable.com/plugins/nessus/51401", "published": "2011-01-03T00:00:00", "title": "Debian DSA-2139-1 : phpmyadmin - several vulnerabilities", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-2139. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51401);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2019/08/02 13:32:23\");\n\n script_cve_id(\"CVE-2010-4329\", \"CVE-2010-4480\", \"CVE-2010-4481\");\n script_bugtraq_id(45100);\n script_xref(name:\"DSA\", value:\"2139\");\n\n script_name(english:\"Debian DSA-2139-1 : phpmyadmin - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Several vulnerabilities have been discovered in phpMyAdmin, a tool to\nadminister MySQL over the web. The Common Vulnerabilities and\nExposures project identifies the following problems :\n\n - CVE-2010-4329\n Cross site scripting was possible in search, that\n allowed a remote attacker to inject arbitrary web script\n or HTML.\n\n - CVE-2010-4480\n Cross site scripting was possible in errors, that\n allowed a remote attacker to inject arbitrary web script\n or HTML.\n\n - CVE-2010-4481\n Display of PHP's phpinfo() function was available to\n world, but only if this functionality had been enabled\n (defaults to off). This may leak some information about\n the host system.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2010-4329\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2010-4480\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2010-4481\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2010/dsa-2139\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the phpmyadmin package.\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 2.11.8.1-5+lenny7.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:phpmyadmin\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:5.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/01/03\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"5.0\", prefix:\"phpmyadmin\", reference:\"2.11.8.1-5+lenny7\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:40", "bulletinFamily": "software", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "modified": "2011-01-03T00:00:00", "published": "2011-01-03T00:00:00", "id": "SECURITYVULNS:VULN:11328", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11328", "title": "Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T11:10:38", "bulletinFamily": "software", "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n- ------------------------------------------------------------------------\r\nDebian Security Advisory DSA-2139-1 security@debian.org\r\nhttp://www.debian.org/security/ Thijs Kinkhorst\r\nDecember 31, 2010 http://www.debian.org/security/faq\r\n- ------------------------------------------------------------------------\r\n\r\nPackage : phpmyadmin\r\nVulnerability : several\r\nProblem type : remote\r\nDebian-specific: no\r\nCVE ID : CVE-2010-4329 CVE-2010-4480 CVE-2010-4481\r\n\r\nSeveral vulnerabilities have been discovered in phpMyAdmin, a tool\r\nto administer MySQL over the web. The Common Vulnerabilities and Exposures\r\nproject identifies the following problems:\r\n\r\nCVE-2010-4329\r\n\r\n Cross site scripting was possible in search, that allowed\r\n a remote attacker to inject arbitrary web script or HTML.\r\n\r\nCVE-2010-4480\r\n\r\n Cross site scripting was possible in errors, that allowed\r\n a remote attacker to inject arbitrary web script or HTML.\r\n\r\nCVE-2010-4481\r\n\r\n Display of PHP&#39;s phpinfo&#40;&#41; function was available to world, but only\r\n if this functionality had been enabled &#40;defaults to off&#41;. This may\r\n leak some information about the host system.\r\n\r\nFor the stable distribution &#40;lenny&#41;, these problems have been fixed in\r\nversion 2.11.8.1-5+lenny7.\r\n\r\nFor the testing &#40;squeeze&#41; and unstable distribution &#40;sid&#41;, these problems\r\nhave been fixed in version 3.3.7-3.\r\n\r\nWe recommend that you upgrade your phpmyadmin package.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: http://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.10 &#40;GNU/Linux&#41;\r\n\r\niQEcBAEBAgAGBQJNHf0sAAoJEOxfUAG2iX57ulcIAL/G01SH84xfAQeKRarQSM+L\r\nJdOx/v9un204DK+N2Cj9qwI/oCY8gVoyISU1emufUgmsl5f0osADWpL6kv0gCaKk\r\nADXYs77K78/KDa3eixWMVMkspRxZBXA6TT6GkgSZYB14pF2krFOKXpUc3kk9dy3v\r\nI1qV9YnJhw/gXGn7XX6/Htnuu9aYqGc4+GcfFYW0j8FeJ8Og/VmgubkITvUyAHiR\r\nHE98xPwek8WhTXdsNsqpseraeaoscdizCbIfb2fHSaCJKZj+sY5eeVVOaqsG4RdV\r\nT34FuRRjsl0FrHEWSZK650cKcMvU3loAcCJnx94PTW5oqk7XDQihlInaoqEBlNY=\r\n=ZWgu\r\n-----END PGP SIGNATURE-----", "modified": "2011-01-03T00:00:00", "published": "2011-01-03T00:00:00", "id": "SECURITYVULNS:DOC:25426", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:25426", "title": "[SECURITY] [DSA 2139-1] New phpmyadmin packages fix several vulnerabilities", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}], "debian": [{"lastseen": "2020-07-14T13:01:18", "bulletinFamily": "unix", "description": "- ------------------------------------------------------------------------\nDebian Security Advisory DSA-2139-1 security@debian.org\nhttp://www.debian.org/security/ Thijs Kinkhorst\nDecember 31, 2010 http://www.debian.org/security/faq\n- ------------------------------------------------------------------------\n\nPackage : phpmyadmin\nVulnerability : several\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2010-4329 CVE-2010-4480 CVE-2010-4481\n\nSeveral vulnerabilities have been discovered in phpMyAdmin, a tool\nto administer MySQL over the web. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2010-4329\n\n Cross site scripting was possible in search, that allowed\n a remote attacker to inject arbitrary web script or HTML.\n\nCVE-2010-4480\n\n Cross site scripting was possible in errors, that allowed\n a remote attacker to inject arbitrary web script or HTML.\n\nCVE-2010-4481\n\n Display of PHP&#x27;s phpinfo() function was available to world, but only\n if this functionality had been enabled (defaults to off). This may\n leak some information about the host system.\n\nFor the stable distribution (lenny), these problems have been fixed in\nversion 2.11.8.1-5+lenny7.\n\nFor the testing (squeeze) and unstable distribution (sid), these problems\nhave been fixed in version 3.3.7-3.\n\nWe recommend that you upgrade your phpmyadmin package.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n\n", "modified": "2010-12-31T15:57:43", "published": "2010-12-31T15:57:43", "id": "DEBIAN:DSA-2139-1:FDD12", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2010/msg00190.html", "title": "[SECURITY] [DSA 2139-1] New phpmyadmin packages fix several vulnerabilities", "type": "debian", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}]}