Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2019/10/04 10:18 p.m.20 views

CVE-2009-3696

Cross-site scripting XSS vulnerability in phpMyAdmin 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name for a MySQL table...

4.3CVSS5.7AI score0.02571EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2009/10/27 12:0 a.m.35 views

SuSE Security Summary SUSE-SR:2009:017

The remote host is missing updates announced in advisory SUSE-SR:2009:017. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

7.5CVSS1.4AI score0.3038EPSS
Exploits12
seebug.org
seebug.org
added 2009/10/22 12:0 a.m.46 views

phpMyAdmin SQL注入和跨站脚本漏洞

BUGTRAQ ID: 36658 CVE ID: CVE-2009-3697,CVE-2009-3696 phpMyAdmin是用PHP编写的工具,用于通过WEB管理MySQL。 phpMyAdmin没有正确地过滤对MySQL表格名称所提交的输入参数,远程攻击者可以通过提交恶意请求执行存储式跨站脚本攻击,并在用户浏览恶意数据时执行所注入的HTML和脚本代码;此外phpMyAdmin还没有正确地过滤提交给PDF schema生成器功能的各种参数,远程攻击者可以通过提交恶意请求执行SQL注入攻击。 phpMyAdmin 3.x phpMyAdmin 2.11.x 厂商补丁:...

7.5CVSS0.02602EPSS
Exploits1
NVD
NVD
added 2009/10/16 4:30 p.m.16 views

CVE-2009-3696

Cross-site scripting XSS vulnerability in phpMyAdmin 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name for a MySQL table...

4.3CVSS5.3AI score0.02571EPSS
Exploits1References19
CVE
CVE
added 2009/10/16 4:0 p.m.80 views

CVE-2009-3696

phpMyAdmin is affected by CVE-2009-3696 (XSS) for versions 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1. The root cause is an XSS vulnerability triggered by a crafted MySQL table name, allowing remote attackers to inject arbitrary scripts/HTML. Debian and SUSE advisories indicate patches: upgrad...

4.3CVSS5.3AI score0.02571EPSS
Exploits1References19Affected Software1
Cvelist
Cvelist
added 2009/10/16 4:0 p.m.34 views

CVE-2009-3696

Cross-site scripting XSS vulnerability in phpMyAdmin 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name for a MySQL table...

5.3AI score0.02571EPSS
Exploits1References19
Tenable Nessus
Tenable Nessus
added 2009/10/16 12:0 a.m.27 views

Fedora 10 : phpMyAdmin-3.2.2.1-1.fc10 (2009-10510)

Changes for 3.2.2.1: - security XSS and SQL injection, thanks to Herman van Rink Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.5CVSS5.5AI score0.02602EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2009/10/16 12:0 a.m.30 views

Fedora 11 : phpMyAdmin-3.2.2.1-1.fc11 (2009-10530)

Changes for 3.2.2.1: - security XSS and SQL injection, thanks to Herman van Rink Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.5CVSS5.5AI score0.02602EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2009/10/15 12:0 a.m.20 views

phpMyAdmin < 2.11.9.6 / 3.x < 3.2.2.1 Multiple Vulnerabilities

Binary data 5209.prm...

7.5CVSS6.8AI score0.02602EPSS
Exploits1References3
Rows per page
Query Builder