Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2016-4412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another...

4.4CVSS5.6AI score0.01024EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/10/04 12:0 a.m.6 views

PT-2023-6128 · Wireshark +4 · Wireshark +4

Name of the Vulnerable Software and Affected Versions: Wireshark versions 3.6.0 through 3.6.16 Wireshark versions 4.0.0 through 4.0.8 Description: The issue is related to a memory leak in the RTPS dissector of Wireshark, which can be exploited to cause a denial of service. This can be achieved vi...

9CVSS7.5AI score0.03456EPSS
Exploits12References129
OSV
OSV
added 2022/05/17 2:36 a.m.15 views

GHSA-JVXX-8XXF-5495 phpMyAdmin CSRF Vulnerability

An issue was discovered in phpMyAdmin. When the argseparator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to...

9.8CVSS7.7AI score0.01018EPSS
Exploits0References5
Prion
Prion
added 2016/12/11 2:59 a.m.26 views

Race condition

An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. This issue is resolved by using a copy of a hash to avoid a race condition. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to 4.0.10.18 are...

4.3CVSS5.9AI score0.01712EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2016/12/11 2:59 a.m.29 views

CVE-2016-6606

An issue was discovered in cookie encryption in phpMyAdmin. The decryption of the username/password is vulnerable to a padding oracle attack. This can allow an attacker who has access to a user's browser cookie file to decrypt the username and password. Furthermore, the same initialization vector...

8.1CVSS7.2AI score0.01386EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2016/12/11 2:0 a.m.30 views

CVE-2016-9848

An issue was discovered in phpMyAdmin. phpinfo phpinfo.php shows PHP information including values of HttpOnly cookies. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to 4.0.10.18 are affected...

5.3CVSS7.2AI score0.01308EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2016/12/11 2:0 a.m.44 views

CVE-2016-9856

An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. This issue is resolved by using a copy of a hash to avoid a race condition. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to 4.0.10.18 are...

6.1CVSS5.8AI score0.01467EPSS
Exploits0
Rows per page
Query Builder