9 matches found
CVE-2009-3697
SQL injection vulnerability in the PDF schema generator functionality in phpMyAdmin 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified interface parameters...
SuSE Security Summary SUSE-SR:2009:017
The remote host is missing updates announced in advisory SUSE-SR:2009:017. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
phpMyAdmin SQL注入和跨站脚本漏洞
BUGTRAQ ID: 36658 CVE ID: CVE-2009-3697,CVE-2009-3696 phpMyAdmin是用PHP编写的工具,用于通过WEB管理MySQL。 phpMyAdmin没有正确地过滤对MySQL表格名称所提交的输入参数,远程攻击者可以通过提交恶意请求执行存储式跨站脚本攻击,并在用户浏览恶意数据时执行所注入的HTML和脚本代码;此外phpMyAdmin还没有正确地过滤提交给PDF schema生成器功能的各种参数,远程攻击者可以通过提交恶意请求执行SQL注入攻击。 phpMyAdmin 3.x phpMyAdmin 2.11.x 厂商补丁:...
CVE-2009-3697
SQL injection vulnerability in the PDF schema generator functionality in phpMyAdmin 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified interface parameters...
CVE-2009-3697
SQL injection vulnerability in the PDF schema generator functionality in phpMyAdmin 2.11.x before 2.11.9.6 and 3.x before 3.2.2.1 allows remote attackers to execute arbitrary SQL commands via unspecified interface parameters...
CVE-2009-3697
CVE-2009-3697 is an SQL injection vulnerability in the PDF schema generator of phpMyAdmin. Affected products are phpMyAdmin 2.11.x prior to 2.11.9.6 and 3.x prior to 3.2.2.1. The issue allows remote attackers to execute arbitrary SQL commands via unspecified interface parameters. Public disclosur...
Fedora 10 : phpMyAdmin-3.2.2.1-1.fc10 (2009-10510)
Changes for 3.2.2.1: - security XSS and SQL injection, thanks to Herman van Rink Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 11 : phpMyAdmin-3.2.2.1-1.fc11 (2009-10530)
Changes for 3.2.2.1: - security XSS and SQL injection, thanks to Herman van Rink Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
phpMyAdmin < 2.11.9.6 / 3.x < 3.2.2.1 Multiple Vulnerabilities
Binary data 5209.prm...