8 matches found
Mageia: Security Advisory (MGASA-2017-0270)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DLA-1561-1 : phpldapadmin security update
It was discovered that there was a cross-site scripting XSS vulnerability in phpldapadmin, a web-based interface for administering LDAP servers. For Debian 8 'Jessie', this problem has been fixed in version 1.2.2-5.2+deb8u1. Note: the package changelog mistakenly refers to the non-existent...
[SECURITY] [DLA 1561-1] phpldapadmin security update
Package : phpldapadmin Version : 1.2.2-5.2+deb8u1 CVE ID : CVE-2017-11107 Debian Bug : 867719 It was discovered that there was a cross-site scripting XSS vulnerability in phpldapadmin, a web-based interface for administering LDAP servers. For Debian 8 "Jessie", this problem has been fixed in...
Fedora 25 : phpldapadmin (2017-346836a623)
Fix CVE-2017-11107 1471112 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 24 : phpldapadmin (2017-1a8bebaab4)
Fix CVE-2017-11107 1471112 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 26 : phpldapadmin (2017-05888dd4fe)
Fix CVE-2017-11107 1471112 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
UBUNTU-CVE-2017-11107
phpLDAPadmin through 1.2.3 has XSS in htdocs/entrychooser.php via the form, element, rdn, or container parameter...
CVE-2017-11107
CVE-2017-11107 affects phpLDAPadmin up to version 1.2.3, with a cross-site scripting vulnerability in htdocs/entry_chooser.php via form fields, the rdn, or container parameters. The issue stems from insufficient input sanitization in that component, enabling injected HTML/JavaScript in a user’s c...