9 matches found
SUSE CVE-2013-1937
Multiple cross-site scripting XSS vulnerabilities in tblgisvisualization.php in phpMyAdmin 3.5.x before 3.5.8 might allow remote attackers to inject arbitrary web script or HTML via the 1 visualizationSettingswidth or 2 visualizationSettingsheight parameter. NOTE: a third party reports that this ...
phpMyAdmin Multiple XSS Vulnerabilities (PMASA-2013-1) - Windows
phpMyAdmin is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
openSUSE Security Update : phpMyAdmin (openSUSE-SU-2013:1065-1)
This update of phpMyAdmin fixes several security issues. - update to 3.5.8.1 2013-04-24 - security Remote code execution pregreplace, reported by Janek Vind see PMASA-2013-2 - security Locally Saved SQL Dump File Multiple File Extension Remote Code Execution, reported by Janek Vind see PMASA-2013...
Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2013:144)
Multiple cross-site scripting XSS vulnerabilities in tblgisvisualization.php in phpMyAdmin 3.5.x before 3.5.8 might allow remote attackers to inject arbitrary web script or HTML via the 1 visualizationSettingswidth or 2 visualizationSettingsheight parameter CVE-2013-1937. This upgrade provides th...
XSS due to unescaped HTML output in GIS visualisation page.
PMASA-2013-1 Announcement-ID: PMASA-2013-1 Date: 2013-04-18 Summary XSS due to unescaped HTML output in GIS visualisation page. Description When modifying a URL parameter with a crafted value it is possible to trigger an XSS. Severity We consider this vulnerability to be non critical. Mitigation...
CVE-2013-1937
Multiple cross-site scripting XSS vulnerabilities in tblgisvisualization.php in phpMyAdmin 3.5.x before 3.5.8 might allow remote attackers to inject arbitrary web script or HTML via the 1 visualizationSettingswidth or 2 visualizationSettingsheight parameter. NOTE: a third party reports that this ...
CVE-2013-1937
Multiple cross-site scripting XSS vulnerabilities in tblgisvisualization.php in phpMyAdmin 3.5.x before 3.5.8 might allow remote attackers to inject arbitrary web script or HTML via the 1 visualizationSettingswidth or 2 visualizationSettingsheight parameter. NOTE: a third party reports that this ...
CVE-2013-1937
CVE-2013-1937 corresponds to multiple Cross-Site Scripting (XSS) vulnerabilities in phpMyAdmin. The public advisory notes an XSS flaw in tbl_gis_visualization.php within phpMyAdmin 3.5.x before 3.5.8, exploitable via the visualizationSettings[width] or visualizationSettings[height] parameters, po...
CVE-2013-1937
creationtimestamp| type| source ---|---|--- 2013-04-09 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38440...