5 matches found
Gentoo Security Advisory GLSA 200906-03 (phpmyadmin)
The remote host is missing updates announced in advisory GLSA 200906-03. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Mandrake Security Advisory MDVSA-2009:115 (phpMyAdmin)
The remote host is missing an update to phpMyAdmin announced via advisory MDVSA-2009:115. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
CVE-2009-1150
CVE-2009-1150 affects phpMyAdmin: XSS in the export page (display_export.lib.php) via the pma_db_filename_template cookie. Vulnerable when using phpMyAdmin 2.11.x (before 2.11.9.5) or 3.x (before 3.1.3.1). Root cause is insufficient sanitization of cookie data on the Export page, enabling remote ...
CVE-2009-1150
Multiple cross-site scripting XSS vulnerabilities in the export page displayexport.lib.php in phpMyAdmin 2.11.x before 2.11.9.5 and 3.x before 3.1.3.1 allow remote attackers to inject arbitrary web script or HTML via the pmadbfilenametemplate cookie...
Cross-site scripting on export page using cookies.
PMASA-2009-2 Announcement-ID: PMASA-2009-2 Date: 2009-03-24 Summary Cross-site scripting on export page using cookies. Description Export page uses cookies to remember user settings of file name template. These cookies could be used for cross-site scripting because they were not sanitized...