Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-3382-1
HistoryOct 28, 2015 - 12:00 a.m.

phpmyadmin - security update

2015-10-2800:00:00
Google
osv.dev
13

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.203 Low

EPSS

Percentile

95.6%

JSON

Several issues have been fixed in phpMyAdmin, the web administration
tool for MySQL.

Multiple cross-site scripting (XSS) vulnerabilities.

Denial of service (resource consumption) via a long password.

Vulnerability allowing man-in-the-middle attack on API call to GitHub.

Vulnerability that allows bypassing the reCaptcha test.

Content spoofing vulnerability when redirecting user to an
external site.

For the oldstable distribution (wheezy), these problems have been fixed
in version 4:3.4.11.1-2+deb7u2.

For the stable distribution (jessie), these problems have been fixed in
version 4:4.2.12-2+deb8u1.

For the unstable distribution (sid), these problems have been fixed in
version 4:4.5.1-1.

We recommend that you upgrade your phpmyadmin packages.

CPENameOperatorVersion
phpmyadmineq4:4.2.12-2

Related

nessus 45
openvas 32
debian 2
osv 3
fedora 21
mageia 5
freebsd 6
typo3 1
phpmyadmin 7
zdt 1
debiancve 7
cve 7
ubuntucve 7
exploitpack 1
prion 7
archlinux 1
github 1
f5 2
securityvulns 8
exploitdb 1
gentoo 1
ubuntu 1
nessus
nessus
Debian DSA-3382-1 : phpmyadmin - security update
2015-10-30 00:00:00
Debian DLA-336-1 : phpmyadmin security update
2015-10-29 00:00:00
openSUSE Security Update : phpMyAdmin (openSUSE-2015-466)
2015-07-06 00:00:00
openvas
openvas
Debian Security Advisory DSA 3382-1 (phpmyadmin - security update)
2015-10-28 00:00:00
Debian Security Advisory DSA 3382-1 (phpmyadmin - security update)
2015-10-28 00:00:00
Fedora Update for phpMyAdmin FEDORA-2015-8267
2015-06-09 00:00:00
debian
debian
[SECURITY] [DSA 3382-1] phpmyadmin security update
2015-10-28 19:52:25
[SECURITY] [DLA 336-1] phpmyadmin security update
2015-10-28 19:55:06
osv
osv
phpmyadmin - security update
2015-10-28 00:00:00
phpMyAdmin ReCaptcha bypass
2022-05-17 03:18:28
phpmyadmin vulnerabilities
2021-03-16 14:27:57
fedora
fedora
[SECURITY] Fedora 20 Update: phpMyAdmin-4.4.6.1-1.fc20
2015-05-17 06:44:09
[SECURITY] Fedora 21 Update: phpMyAdmin-4.4.6.1-1.fc21
2015-05-17 06:39:35
[SECURITY] Fedora 22 Update: phpMyAdmin-4.4.6.1-1.fc22
2015-05-26 03:43:49
mageia
mageia
Updated phpmyadmin packages fix security vulnerabilities
2015-05-18 22:08:05
Updated phpmyadmin package fixes CVE-2014-9218
2014-12-05 18:54:13
Updated phpmyadmin packages fix CVE-2015-6830
2015-09-14 00:58:30
freebsd
freebsd
phpMyAdmin -- XSRF and man-in-the-middle vulnerabilities
2015-05-13 00:00:00
phpMyAdmin -- reCaptcha bypass
2015-09-08 00:00:00
phpMyAdmin -- Content spoofing vulnerability
2015-10-23 00:00:00
typo3
typo3
Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)
2014-12-08 00:00:00
phpmyadmin
phpmyadmin
DoS vulnerability with long passwords.
2014-12-03 00:00:00
Content spoofing vulnerability when redirecting user to an external site
2015-10-23 00:00:00
Multiple XSS vulnerabilities.
2014-11-20 00:00:00
zdt
zdt
phpMyAdmin 4.0.x, 4.1.x, 4.2.x - DoS
2014-12-16 00:00:00
debiancve
debiancve
CVE-2014-9218
2014-12-08 11:59:00
CVE-2015-7873
2015-10-28 10:59:00
CVE-2014-8958
2014-11-30 11:59:00
cve
cve
CVE-2014-9218
2014-12-08 11:59:00
CVE-2014-8958
2014-11-30 11:59:00
CVE-2015-6830
2015-09-14 01:59:00
ubuntucve
ubuntucve
CVE-2014-9218
2014-12-08 00:00:00
CVE-2015-7873
2015-10-28 00:00:00
CVE-2014-8958
2014-11-30 00:00:00
exploitpack
exploitpack
phpMyAdmin 4.0.x4.1.x4.2.x - Denial of Service
2014-12-15 00:00:00
prion
prion
Code injection
2014-12-08 11:59:00
Cross site scripting
2014-11-30 11:59:00
Design/Logic Flaw
2015-09-14 01:59:00
archlinux
archlinux
phpmyadmin: content spoofing
2015-10-30 00:00:00
github
github
phpMyAdmin ReCaptcha bypass
2022-05-17 03:18:28
f5
f5
SOL16494 - phpMyAdmin vulnerability CVE-2015-2206
2015-04-22 00:00:00
K16494 : phpMyAdmin vulnerability CVE-2015-2206
2015-04-22 00:00:00
securityvulns
securityvulns
phpMyAdmin 4.4.6 Man-In-the-Middle API Github
2015-05-18 00:00:00
[ MDVSA-2015:186 ] phpmyadmin
2015-05-12 00:00:00
[ MDVSA-2014:243 ] phpmyadmin
2014-12-22 00:00:00
exploitdb
exploitdb
phpMyAdmin 4.0.x/4.1.x/4.2.x - Denial of Service
2014-12-15 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2015-05-31 00:00:00
ubuntu
ubuntu
phpMyAdmin vulnerabilities
2021-03-16 00:00:00

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.203 Low

EPSS

Percentile

95.6%

JSON
Related for OSV:DSA-3382-1
nessus45openvas32debian2osv3fedora21mageia5freebsd6typo31phpmyadmin7zdt1debiancve7cve7ubuntucve7exploitpack1prion7archlinux1github1f52securityvulns8exploitdb1gentoo1ubuntu1