Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2016 Greenbone AGOPENVAS:1361412562310808242
HistoryJul 04, 2016 - 12:00 a.m.

phpMyAdmin Multiple Vulnerabilities (PMASA-2016-24, PMASA-2016-26, PMASA-2016-27, PMASA-2016-28) - Linux

2016-07-0400:00:00
Copyright (C) 2016 Greenbone AG
plugins.openvas.org
35

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.1 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.919 High

EPSS

Percentile

98.9%

JSON

phpMyAdmin is prone to multiple vulnerabilities.

# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:phpmyadmin:phpmyadmin";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.808242");
  script_version("2024-02-13T05:06:26+0000");
  script_cve_id("CVE-2016-5739", "CVE-2016-5733", "CVE-2016-5734", "CVE-2016-5731",
                "CVE-2016-5732", "CVE-2016-5730", "CVE-2016-5706", "CVE-2016-5704",
                "CVE-2016-5705", "CVE-2016-5703", "CVE-2016-5702");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_tag(name:"last_modification", value:"2024-02-13 05:06:26 +0000 (Tue, 13 Feb 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2017-07-01 01:29:00 +0000 (Sat, 01 Jul 2017)");
  script_tag(name:"creation_date", value:"2016-07-04 14:45:45 +0530 (Mon, 04 Jul 2016)");
  script_tag(name:"qod_type", value:"remote_banner_unreliable");
  script_name("phpMyAdmin Multiple Vulnerabilities (PMASA-2016-24, PMASA-2016-26, PMASA-2016-27, PMASA-2016-28) - Linux");

  script_tag(name:"summary", value:"phpMyAdmin is prone to multiple vulnerabilities.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Multiple flaws are due to:

  - The Transformation implementation does not use the no-referrer Content
    Security Policy (CSP) protection mechanism.

  - Multiple input validation errors.

  - An improper selection of delimiters to prevent use of the preg_replace
    e (aka eval) modifier.

  - An improper handling of error messages.

  - An insufficient validation of 'scripts' parameter in 'js/get_scripts.js.php'
    script.

  - An improper sanitization of URI.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote
  attackers to inject arbitrary web script or HTML or arbitrary PHP code via
  crafted parameters, execute arbitrary SQL commands, cause a denial of
  service, obtain sensitive information and conduct CSRF attacks.");

  script_tag(name:"affected", value:"phpMyAdmin versions 4.0.x before 4.0.10.16,
  4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 on Linux.");

  script_tag(name:"solution", value:"Update to version 4.0.10.16, 4.4.15.7, 4.6.3 or later.");

  script_tag(name:"solution_type", value:"VendorFix");

  script_xref(name:"URL", value:"https://www.phpmyadmin.net/security/PMASA-2016-28");
  script_xref(name:"URL", value:"https://www.phpmyadmin.net/security/PMASA-2016-27");
  script_xref(name:"URL", value:"https://www.phpmyadmin.net/security/PMASA-2016-26");
  script_xref(name:"URL", value:"https://www.phpmyadmin.net/security/PMASA-2016-24");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone AG");
  script_family("Web application abuses");
  script_dependencies("gb_phpmyadmin_http_detect.nasl", "os_detection.nasl");
  script_mandatory_keys("phpMyAdmin/installed", "Host/runs_unixoide");

  exit(0);
}

include("version_func.inc");
include("host_details.inc");

if(!port = get_app_port(cpe:CPE))
  exit(0);

if(!vers = get_app_version(cpe:CPE, port:port))
  exit(0);

if(vers =~ "^4\.0")
{
  if(version_is_less(version:vers, test_version:"4.0.10.16"))
  {
    fix = "4.0.10.16";
    VULN = TRUE;
  }
}

else if(vers =~ "^4\.4")
{
  if(version_is_less(version:vers, test_version:"4.4.15.7"))
  {
    fix = "4.4.15.7";
    VULN = TRUE;
  }
}

else if(vers =~ "^4\.6")
{
  if(version_is_less(version:vers, test_version:"4.6.3"))
  {
    fix = "4.6.3";
    VULN = TRUE;
  }
}

if(VULN)
{
  report = report_fixed_ver(installed_version:vers, fixed_version:fix);
  security_message(port:port, data:report);
  exit(0);
}

Related

openvas 8
freebsd 1
nessus 10
fedora 3
archlinux 1
mageia 1
osv 8
debian 2
checkpoint_advisories 1
packetstorm 1
seebug 1
cvelist 11
zdt 2
github 6
debiancve 11
ubuntucve 11
phpmyadmin 11
nvd 11
cve 11
prion 11
exploitpack 1
exploitdb 1
gentoo 1
openvas
openvas
phpMyAdmin Multiple Vulnerabilities (PMASA-2016-24, PMASA-2016-26, PMASA-2016-27, PMASA-2016-28) - Windows
2016-07-04 00:00:00
Fedora Update for phpMyAdmin FEDORA-2016-56ee5cb8b6
2016-07-10 00:00:00
Fedora Update for phpMyAdmin FEDORA-2016-9df3915036
2016-07-10 00:00:00
freebsd
freebsd
phpMyAdmin -- multiple vulnerabilities
2016-06-23 00:00:00
nessus
nessus
phpMyAdmin 4.6.x < 4.6.3 Multiple Vulnerabilities (PMASA-2016-17 - PMASA-2016-28)
2017-04-25 00:00:00
FreeBSD : phpMyAdmin -- multiple vulnerabilities (e7028e1d-3f9b-11e6-81f9-6805ca0b3d42)
2016-07-05 00:00:00
openSUSE Security Update : phpMyAdmin (openSUSE-2016-804)
2016-06-29 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: phpMyAdmin-4.6.3-1.fc22
2016-07-03 10:52:54
[SECURITY] Fedora 24 Update: phpMyAdmin-4.6.3-1.fc24
2016-06-27 18:41:58
[SECURITY] Fedora 23 Update: phpMyAdmin-4.6.3-1.fc23
2016-07-03 10:57:02
archlinux
archlinux
phpmyadmin: multiple issues
2016-06-25 00:00:00
mageia
mageia
Updated phpmyadmin packages fix security vulnerability
2016-07-05 18:47:08
osv
osv
phpmyadmin - security update
2016-07-17 00:00:00
phpmyadmin - security update
2016-07-24 00:00:00
phpMyAdmin Denial Of Service (DOS) attack
2022-05-14 02:08:57
debian
debian
[SECURITY] [DLA 551-1] phpmyadmin security update
2016-07-17 21:23:51
[SECURITY] [DSA 3627-1] phpmyadmin security update
2016-07-24 16:03:22
checkpoint_advisories
checkpoint_advisories
Web Servers PHPMyAdmin Remote Code Execution (CVE-2016-5734)
2018-06-19 00:00:00
packetstorm
packetstorm
phpMyAdmin 4.x Remote Code Execution
2018-06-18 00:00:00
seebug
seebug
PhpMyAdmin 4.3.0—4.6.2 authorized users remote command execution vulnerability
2016-08-01 00:00:00
cvelist
cvelist
CVE-2016-5734
2016-07-03 01:00:00
CVE-2016-5703
2016-07-03 01:00:00
CVE-2016-5706
2016-07-03 01:00:00
zdt
zdt
phpMyAdmin 4.x Remote Code Execution Exploit
2018-06-19 00:00:00
phpMyAdmin 4.6.2 - Authenticated Remote Code Execution
2016-07-29 00:00:00
github
github
phpMyAdmin Denial Of Service (DOS) attack
2022-05-14 02:08:57
phpMyAdmin Cross-site scripting (XSS) vulnerability
2022-05-14 02:08:58
phpMyAdmin XSS Vulnerability
2022-05-17 02:37:29
debiancve
debiancve
CVE-2016-5706
2016-07-03 01:59:18
CVE-2016-5705
2016-07-03 01:59:17
CVE-2016-5703
2016-07-03 01:59:14
ubuntucve
ubuntucve
CVE-2016-5706
2016-07-03 00:00:00
CVE-2016-5703
2016-07-03 00:00:00
CVE-2016-5734
2016-07-03 00:00:00
phpmyadmin
phpmyadmin
SQL injection attack
2016-06-23 00:00:00
DOS attack
2016-06-23 00:00:00
Referrer leak in transformations
2016-06-23 00:00:00
nvd
nvd
CVE-2016-5703
2016-07-03 01:59:14
CVE-2016-5706
2016-07-03 01:59:18
CVE-2016-5731
2016-07-03 01:59:21
cve
cve
CVE-2016-5703
2016-07-03 01:59:14
CVE-2016-5705
2016-07-03 01:59:17
CVE-2016-5706
2016-07-03 01:59:18
prion
prion
Code injection
2016-07-03 01:59:00
Cross site request forgery (csrf)
2016-07-03 01:59:00
Sql injection
2016-07-03 01:59:00
exploitpack
exploitpack
phpMyAdmin 4.6.2 - (Authenticated) Remote Code Execution
2016-07-29 00:00:00
exploitdb
exploitdb
phpMyAdmin 4.6.2 - (Authenticated) Remote Code Execution
2016-07-29 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2017-01-11 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.1 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.919 High

EPSS

Percentile

98.9%

JSON
Related for OPENVAS:1361412562310808242
openvas8freebsd1nessus10fedora3archlinux1mageia1osv8debian2checkpoint_advisories1packetstorm1seebug1cvelist11zdt2github6debiancve11ubuntucve11phpmyadmin11nvd11cve11prion11exploitpack1exploitdb1gentoo1