Lucene search
K

5 matches found

OSV
OSV
added 2022/05/17 2:36 a.m.15 views

GHSA-JVXX-8XXF-5495 phpMyAdmin CSRF Vulnerability

An issue was discovered in phpMyAdmin. When the argseparator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to...

9.8CVSS7.7AI score0.01018EPSS
Exploits0References5
Prion
Prion
added 2016/12/11 2:59 a.m.26 views

Race condition

An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. This issue is resolved by using a copy of a hash to avoid a race condition. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to 4.0.10.18 are...

4.3CVSS5.9AI score0.01712EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2016/12/11 2:59 a.m.29 views

CVE-2016-6606

An issue was discovered in cookie encryption in phpMyAdmin. The decryption of the username/password is vulnerable to a padding oracle attack. This can allow an attacker who has access to a user's browser cookie file to decrypt the username and password. Furthermore, the same initialization vector...

8.1CVSS7.2AI score0.01386EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2016/12/11 2:0 a.m.26 views

CVE-2016-9848

An issue was discovered in phpMyAdmin. phpinfo phpinfo.php shows PHP information including values of HttpOnly cookies. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to 4.0.10.18 are affected...

5.3CVSS7.2AI score0.01308EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2016/12/11 2:0 a.m.44 views

CVE-2016-9856

An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. This issue is resolved by using a copy of a hash to avoid a race condition. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to 4.0.10.18 are...

6.1CVSS5.8AI score0.01467EPSS
Exploits0
Rows per page
Query Builder