Lucene search
K

18 matches found

OpenVAS
OpenVAS
added 2017/08/16 12:0 a.m.31 views

phpMyAdmin Multiple Security Vulnerabilities (Apr 2013) - Linux

phpMyAdmin is prone to multiple security vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...

6CVSS6.3AI score0.28851EPSS
Exploits16References2
Check Point Advisories
Check Point Advisories
added 2015/05/18 12:0 a.m.14 views

PhpMyAdmin preg_replace Function Code Injection - Ver2 (CVE-2013-3238)

A vulnerability has been reported in phpMyAdmin, a web-based administration console for MySQL servers. The vulnerability is due to an input validation error when handling queries of the types replaceprefixtbl or copytblchangeprefix to dbstructure.php. A remote, authenticated attacker could exploi...

6CVSS2.2AI score0.28851EPSS
Exploits14
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.110 views

phpMyAdmin 3.5.8 and 4.0.0-RC2 - Multiple Vulnerabilities

No description provided by source. waraxe-2013-SA103 - Multiple Vulnerabilities in phpMyAdmin =============================================================================== Author: Janek Vind waraxe Date: 25. April 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-103.html...

6.5CVSS0.28851EPSS
Exploits18
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

phpMyAdmin Authenticated Remote Code Execution via preg_replace()

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.50 views

openSUSE Security Update : phpMyAdmin (openSUSE-SU-2013:1065-1)

This update of phpMyAdmin fixes several security issues. - update to 3.5.8.1 2013-04-24 - security Remote code execution pregreplace, reported by Janek Vind see PMASA-2013-2 - security Locally Saved SQL Dump File Multiple File Extension Remote Code Execution, reported by Janek Vind see PMASA-2013...

6.1CVSS7.6AI score0.28851EPSS
Exploits17References7
myhack58
myhack58
added 2014/04/14 12:0 a.m.26 views

PhpMyAdmin exploits concludes With Metasploit-vulnerability warning-the black bar safety net

A: affects versions: 3.5. x 3.5.8.1 and 4.0.0 4.0.0-rc3 Overview: PhpMyAdmin presence of a PREGREPLACEEVAL vulnerability Use module: exploit/multi/http/phpmyadminpregreplace CVE: CVE-2 0 1 3-3 2 3 8 II: effects version: phpMyAdmin v3. 5. 2. 2 Overview: PhpMyAdmin存在serversync.php Backdoor...

3.1AI score
Exploits0
Saint
Saint
added 2013/05/20 12:0 a.m.58 views

phpMyAdmin preg_replace from_prefix sanitization vulnerability

Added: 05/20/2013 CVE: CVE-2013-3238 BID: 59460 OSVDB: 92793 Background phpMyAdmin is a free software tool, written in PHP, designed to handle the administration of MySQL over the Web. Problem phpMyAdmin before 3.5.8.1 is vulnerable to code injection as a result of failure to sanitize input passe...

6CVSS6.7AI score0.28851EPSS
Exploits14
OpenVAS
OpenVAS
added 2013/05/13 12:0 a.m.37 views

Fedora Update for phpMyAdmin FEDORA-2013-7000

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2013/05/13 12:0 a.m.42 views

Fedora Update for phpMyAdmin FEDORA-2013-6977

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected",...

6CVSS6.3AI score0.28851EPSS
Exploits14References2
securityvulns
securityvulns
added 2013/05/06 12:0 a.m.88 views

[ MDVSA-2013:160 ] phpmyadmin

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:160 http://www.mandriva.com/en/support/security/ Package : phpmyadmin Date : May 3, 2013 Affected: Business Server 1.0 Problem Description: Updated phpmyadmin package fixes security vulnerabilities: In some...

6CVSS6.3AI score0.28851EPSS
Exploits16
securityvulns
securityvulns
added 2013/05/06 12:0 a.m.100 views

[waraxe-2013-SA#103] - Multiple Vulnerabilities in phpMyAdmin

waraxe-2013-SA103 - Multiple Vulnerabilities in phpMyAdmin =============================================================================== Author: Janek Vind "waraxe" Date: 25. April 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-103.html Description of vulnerable software:...

6.5CVSS0.1AI score0.28851EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2013/05/04 12:0 a.m.45 views

Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2013:160)

Updated phpmyadmin package fixes security vulnerabilities : In some PHP versions, the pregreplace\ function can be tricked into executing arbitrary PHP code on the server. This is done by passing a crafted argument as the regular expression, containing a null byte. phpMyAdmin does not correctly...

6CVSS7.4AI score0.28851EPSS
Exploits16References2
Exploit DB
Exploit DB
added 2013/05/01 12:0 a.m.63 views

phpMyAdmin - 'preg_replace' (Authenticated) Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'phpMyAdmin Authenticated Remote Code...

6CVSS6.6AI score0.28851EPSS
Exploits14
Packet Storm
Packet Storm
added 2013/04/29 12:0 a.m.58 views

phpMyAdmin Authenticated Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'phpMyAdmin Authenticated Remote Code...

6CVSS0.5AI score0.28851EPSS
Exploits14
Metasploit
Metasploit
added 2013/04/26 2:42 p.m.88 views

phpMyAdmin Authenticated Remote Code Execution via preg_replace()

This module exploits a PREGREPLACEEVAL vulnerability in phpMyAdmin's replaceprefixtbl within libraries/multsubmits.inc.php via dbsettings.php This affects versions 3.5.x 5.4.6 are not vulnerable. This module requires Metasploit: https://metasploit.com/download Current source:...

6CVSS7AI score0.28851EPSS
Exploits14
CVE
CVE
added 2013/04/26 1:0 a.m.123 views

CVE-2013-3238

CVE-2013-3238 affects phpMyAdmin: versions 3.5.x before 3.5.8.1 and 4.x before 4.0.0-rc3 allow remote authenticated users to execute arbitrary PHP code via a /e\x00 sequence in the Replace table prefix flow, before a preg_replace call. Impact is arbitrary code execution in the HTTP server context...

6CVSS6.3AI score0.28851EPSS
Exploits14References11Affected Software1
Circl
Circl
added 2013/04/25 12:0 a.m.9 views

CVE-2013-3238

creationtimestamp| type| source ---|---|--- 2013-04-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/25003 2013-05-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/25136 2018-05-29 15:50:33+00:00| seen|...

6CVSS6.7AI score0.28851EPSS
Exploits14References3
Packet Storm
Packet Storm
added 2013/04/25 12:0 a.m.87 views

phpMyAdmin 3.5.8 / 4.0.0-RC2 Code Execution / LFI / Overwrite

waraxe-2013-SA103 - Multiple Vulnerabilities in phpMyAdmin =============================================================================== Author: Janek Vind "waraxe" Date: 25. April 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-103.html Description of vulnerable software:...

6.5CVSS0.1AI score0.28851EPSS
Exploits18
Rows per page
Query Builder