Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2013/08/01 12:0 a.m.91 views

phpMyAdmin 3.5.x < 3.5.8.2 / 4.0.x < 4.0.4.2 Multiple Vulnerabilities (PMASA-2013-8 - PMASA-2013-15

According to its self-identified version number, the phpMyAdmin install hosted on the remote web server is 3.5.x earlier than 3.5.8.2 or 4.0.x earlier than 4.0.4.2. It is, therefore, affected by the following vulnerabilities : - Numerous input validation errors exist that could lead to cross-site...

6.5CVSS6.8AI score0.01832EPSS
Exploits0References17
OSV
OSV
added 2013/07/31 1:20 p.m.7 views

CVE-2013-4997

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 allow remote attackers to inject arbitrary web script or HTML via vectors involving a JavaScript event in 1 an anchor identifier to setup/index.php or 2 a chartTitle aka chart title value...

5.5AI score
Exploits0References1
CVE
CVE
added 2013/07/30 6:0 p.m.65 views

CVE-2013-4997

CVE-2013-4997 affects phpMyAdmin 3.5.x before 3.5.8.2, enabling remote XSS via a JavaScript event in an anchor to setup/index.php or in the chartTitle value. Impact is arbitrary script execution in the same user context. Remediation: upgrade to phpMyAdmin 3.5.8.2 or newer (per linked advisories)....

4.3CVSS5.9AI score0.01458EPSS
Exploits0References1Affected Software1
phpMyAdmin
phpMyAdmin
added 2013/07/28 12:0 a.m.40 views

5 XSS vulnerabilities in setup, chart display, process list, and logo link.

PMASA-2013-9 Announcement-ID: PMASA-2013-9 Date: 2013-07-28 Updated: 2013-07-30 Summary 5 XSS vulnerabilities in setup, chart display, process list, and logo link. Description In the setup/index.php, using a crafted hash with a Javascript event, untrusted JS code could be executed. In the Display...

7.3AI score
Exploits0Affected Software1
Rows per page
Query Builder