GHSA-Q7V2-W38R-PV7V phpMyAdmin Multiple XSS Vulnerabilities

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via a Table Operations 1 TRUNCATE or 2 DROP link for a crafted table name, 3 the Add Trigger popup within a Triggers page that references...

openSUSE Security Update : phpMyAdmin (openSUSE-SU-2012:1062-1)

phpMyAdmin was updated to 3.5.2.2 - fix for bnc776698, bnc776701 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-535. The text description of this plugin is C SUSE LLC...

Fedora Update for phpMyAdmin FEDORA-2012-12031

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via a Table Operations 1 TRUNCATE or 2 DROP link for a crafted table name, 3 the Add Trigger popup within a Triggers page that references...

CVE-2012-4345

CVE-2012-4345 affects phpMyAdmin 3.4.x before 3.4.11.1 and 3.5.x before 3.5.2.2. The issue arises from multiple cross-site scripting (XSS) vulnerabilities in the Database Structure page, exploitable by remote authenticated users who can inject arbitrary web script or HTML via a crafted table name...

phpMyAdmin 3.4.x 多个HTML注入漏洞

BUGTRAQ ID: 55068 CVE ID: CVE-2012-4345 phpMyAdmin是一个用PHP编写的，可以通过web方式控制和操作MySQL数据库。 phpMyAdmin 3.4.11.1之前版本、3.5.2.2 之前版本在实现上存在多个HTML注入漏洞，攻击者可利用这些漏洞注入HTML和JS代码到受影响站点，导致窃取身份验证凭证并控制站点外观。 0 phpMyAdmin 3.4.x 厂商补丁： phpMyAdmin ---------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...