openSUSE Security Update : phpMyAdmin (openSUSE-2012-18)

update to 3.4.9 - bug 3442028 edit Inline editing enum fields with null shows no dropdown - bug 3442004 interface DB suggestion not correct for user with underscore - bug 3438420 core Magic quotes removed in PHP 5.4 - bug 3398788 session No feedback when result is empty signon authtype - bug...

Fedora Update for phpMyAdmin FEDORA-2011-17370

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for phpMyAdmin FEDORA-2011-17370

Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2011-17370 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

phpMyAdmin 3.4.9之前版本多个跨站脚本执行漏洞

BUGTRAQ ID: 51226 CVE ID: CVE-2011-4780 phpMyAdmin是一个用PHP编写的，可以通过web方式控制和操作MySQL数据库。 phpMyAdmin在libraries/displayexport.lib.php的实现上存在多个跨站脚本执行漏洞，通过特制的URL参数，攻击者可利用这些漏洞在服务器、数据库、表格的导出面板上造成XSS，可在受影响站点的用户浏览器中执行任意脚本代码，窃取Cookie身份验证凭证。 0 phpMyAdmin 3.4.x 厂商补丁： phpMyAdmin ----------...

phpMyAdmin Setup '$host' Variable Cross Site Scripting Vulnerability

phpMyAdmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2011-4780

The CVE-2011-4780 issue affects phpMyAdmin 3.4.x (pre-3.4.9). It is a set of cross-site scripting (XSS) vulnerabilities in libraries/display_export.lib.php that allow remote attackers to inject arbitrary web script or HTML via crafted URL parameters used by the export panels (server, database, ta...

phpMyAdmin 3.4.x < 3.4.9 XSS (PMASA-2011-19 - PMASA-2011-20)

The version of phpMyAdmin hosted on the remote web server is 3.4.x less than 3.4.9 and thus is reportedly affected by two cross-site scripting vulnerabilities : - The 'libraries/displayexport.lib.php' script does not properly sanitize the '$GET' array elements 'limitto', 'limitfrom' and...

XSS in export.

PMASA-2011-20 Announcement-ID: PMASA-2011-20 Date: 2011-12-21 Summary XSS in export. Description Using crafted url parameters, it was possible to produce XSS on the export panels in the server, database and table sections. Severity We consider these vulnerabilities to be non critical. Mitigation...