Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

OSV
OSVadded 2013/07/04 2:33 p.m.1 views

CVE-2013-3742

Cross-site scripting XSS vulnerability in viewcreate.php aka the Create View page in phpMyAdmin 4.x before 4.0.3 allows remote authenticated users to inject arbitrary web script or HTML via an invalid SQL CREATE VIEW statement with a crafted name that triggers an error message...

5.7AI score
Exploits0References2
Prion
Prionadded 2013/07/04 2:33 p.m.10 views

Cross site scripting

Cross-site scripting XSS vulnerability in viewcreate.php aka the Create View page in phpMyAdmin 4.x before 4.0.3 allows remote authenticated users to inject arbitrary web script or HTML via an invalid SQL CREATE VIEW statement with a crafted name that triggers an error message...

3.5CVSS6.1AI score0.00185EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2013/07/04 10:0 a.m.56 views

CVE-2013-3742

CVE-2013-3742 is a cross-site scripting (XSS) vulnerability in phpMyAdmin 4.x prior to 4.0.3, exploitable via view_create.php (Create View page). The issue arises from handling an invalid SQL CREATE VIEW statement with a crafted name that triggers an error message, enabling remote authenticated u...

3.5CVSS5.7AI score0.00185EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessusadded 2013/06/06 12:0 a.m.23 views

FreeBSD : phpMyAdmin -- XSS due to unescaped HTML output in Create View page (6b97436c-ce1e-11e2-9cb2-6805ca0b3d42)

The phpMyAdmin development team reports : When creating a view with a crafted name and an incorrect CREATE statement, it is possible to trigger an XSS. This vulnerability can be triggered only by someone who logged in to phpMyAdmin, as the usual token protection prevents non-logged-in users from...

3.5CVSS5.4AI score0.00185EPSS
Exploits0References3
phpMyAdmin
phpMyAdminadded 2013/06/05 12:0 a.m.29 views

XSS due to unescaped HTML output in Create View page.

PMASA-2013-6 Announcement-ID: PMASA-2013-6 Date: 2013-06-05 Summary XSS due to unescaped HTML output in Create View page. Description When creating a view with a crafted name and an incorrect CREATE statement, it is possible to trigger an XSS. Severity We consider this vulnerability to be non...

3.5CVSS5.8AI score0.00185EPSS
Exploits0Affected Software1
FreeBSD
FreeBSDadded 2013/06/05 12:0 a.m.30 views

phpMyAdmin -- XSS due to unescaped HTML output in Create View page

The phpMyAdmin development team reports: When creating a view with a crafted name and an incorrect CREATE statement, it is possible to trigger an XSS. This vulnerability can be triggered only by someone who logged in to phpMyAdmin, as the usual token protection prevents non-logged-in users from...

3.5CVSS6.2AI score0.00185EPSS
Exploits0References1
exploitpack
exploitpackadded 2013/03/29 12:0 a.m.30 views

MailOrderWorks 5.907 - Multiple Vulnerabilities

MailOrderWorks 5.907 - Multiple Vulnerabilities Title: ====== MailOrderWorks v5.907 - Multiple Web Vulnerabilities Date: ===== 2013-01-02 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=798 VL-ID: ===== 796 Common Vulnerability Scoring System:...

Exploits0
Rows per page
Query Builder