Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2014/09/12 12:0 a.m.38 views

Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2014:164)

Updated phpmyadmin package fixes security vulnerabilities : In phpMyAdmin before 4.1.14.3, multiple XSS vulnerabilities exist in browse table, ENUM editor, monitor, query charts and table relations pages CVE-2014-5273. In phpMyAdmin before 4.1.14.3, with a crafted view name it is possible to...

3.5CVSS8.2AI score0.01706EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2014/08/29 12:0 a.m.29 views

openSUSE Security Update : phpMyAdmin (openSUSE-SU-2014:1069-1)

This phpMyAdmin update addresses several security and non security issues : - This is a phpMyAdmin version upgrade bnc892401: From 4.1.14.3 : - sf4501 security XSS in table browse page CVE-2014-5273 - sf4502 security Self-XSS in enum value editor CVE-2014-5273 - sf4503 security Self-XSSes in...

4CVSS8.2AI score0.0213EPSS
Exploits3References9
OpenVAS
OpenVAS
added 2014/08/24 12:0 a.m.23 views

Fedora Update for phpMyAdmin FEDORA-2014-9555

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.5CVSS6.5AI score0.01706EPSS
Exploits2References2
OSV
OSV
added 2014/08/22 1:55 a.m.8 views

CVE-2014-5274

Cross-site scripting XSS vulnerability in the view operations page in phpMyAdmin 4.1.x before 4.1.14.3 and 4.2.x before 4.2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name, related to js/functions.js...

5AI score
Exploits0References5
CVE
CVE
added 2014/08/22 1:0 a.m.71 views

CVE-2014-5274

phpMyAdmin 4.1.x prior to 4.1.14.3 and 4.2.x prior to 4.2.7.1 contain a cross-site scripting (XSS) vulnerability in the view operations page. The issue, related to js/functions.js, allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name. Remediation is to ...

3.5CVSS5AI score0.01016EPSS
Exploits1References4Affected Software1
phpMyAdmin
phpMyAdmin
added 2014/08/17 12:0 a.m.44 views

XSS in view operations page.

PMASA-2014-9 Announcement-ID: PMASA-2014-9 Date: 2014-08-17 Summary XSS in view operations page. Description With a crafted view name it is possible to trigger an XSS when dropping the view in view operation page. Severity We consider this vulnerability to be non critical. Mitigation factor This...

3.5CVSS7.2AI score0.01016EPSS
Exploits1Affected Software1
Rows per page
Query Builder