14 matches found
Gentoo Security Advisory GLSA 201201-01 (phpMyAdmin)
The remote host is missing updates announced in advisory GLSA 201201-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian Security Advisory DSA 2097-1 (phpmyadmin)
The remote host is missing an update to phpmyadmin announced via advisory DSA 2097-1. OpenVAS Vulnerability Test $Id: deb20971.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2097-1 phpmyadmin Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Debian Security Advisory DSA 2097-2 (phpmyadmin)
The remote host is missing an update to phpmyadmin announced via advisory DSA 2097-2. OpenVAS Vulnerability Test $Id: deb20972.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2097-2 phpmyadmin Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Debian: Security Advisory (DSA-2097-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 2097-2] New phpmyadmin packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2097-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst September 11, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2097-2] New phpmyadmin packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2097-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst September 11, 2010 http://www.debian.org/security/faq -...
DSA-2097-2 phpmyadmin - several vulnerabilities
Bulletin has no description...
[SECURITY] [DSA 2097-1] New phpmyadmin packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2097-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst August 29, 2010 http://www.debian.org/security/faq -...
phpMyAdmin 'CVE-2010-3055' Configuration File PHP Code Injection Vulnerability
phpMyAdmin is prone to a remote PHP code injection vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Debian DSA-2097-1 : phpmyadmin - insufficient input sanitising
Several remote vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-3055 The configuration setup script does not properly sanitise its output file, which allows...
[SECURITY] [DSA 2097-1] New phpmyadmin packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2097-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst August 29, 2010 http://www.debian.org/security/faq -...
CVE-2010-3055
The configuration setup script aka scripts/setup.php in phpMyAdmin 2.11.x before 2.11.10.1 does not properly restrict key names in its output file, which allows remote attackers to execute arbitrary PHP code via a crafted POST request...
CVE-2010-3055
CVE-2010-3055 affects phpMyAdmin 2.11.x before 2.11.10.1. The configuration setup script (scripts/setup.php) does not properly restrict key names in its output file, enabling a remote attacker to execute arbitrary PHP code via a crafted POST request. The issue, with a CVSS v2 base score of 7.5 (H...
Insufficient output sanitizing when generating configuration file.
PMASA-2010-4 Announcement-ID: PMASA-2010-4 Date: 2010-08-20 Summary Insufficient output sanitizing when generating configuration file. Description The setup script used to generate configuration can be fooled using a crafted POST request to include arbitrary PHP code in generated configuration...