6 matches found
Fedora Update for phpMyAdmin FEDORA-2008-6868
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
phpMyAdmin setup.php文件跨站脚本执行漏洞
BugCVE: CVE-2008-3456,CVE-2008-3457 BUGTRAQ: 30420 phpMyAdmin的scripts/setup.php文件中showoverview $title, $list, $buttons = ''函数没有正确地过滤685行echo $val1输入参数便返回给了用户,如果用户受骗跟随了恶意链接的话就会导致在用户浏览器会话中执行任意HTML和脚本代码。 phpMyAdmin 2.11.8 Debian ------ Debian已经为此发布了一个安全公告(DSA-1641-1)以及相应补丁: DSA-1641-1:New phpmyadmin...
Debian: Security Advisory (DSA-1641-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1641-1 : phpmyadmin - several vulnerabilities
Several remote vulnerabilities have been discovered in phpMyAdmin, a tool to administrate MySQL databases over the web. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4096 Remote authenticated users could execute arbitrary code on the host running...
[SECURITY] [DSA 1641-1] New phpmyadmin packages fix several issues
------------------------------------------------------------------------ Debian Security Advisory DSA-1641-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst September 20, 2008 http://www.debian.org/security/faq -...
CVE-2008-3456
CVE-2008-3456 affects phpMyAdmin up to version 2.11.x prior to 2.11.8, where pages could be framed by remote domains, enabling cross-site framing that could facilitate spoofing/phishing. The root cause is insufficient framing protection. Upgrading to PHPMyAdmin 2.11.8.x or later fixes the issue (...