6 matches found
Mandriva Linux Security Advisory : phpmyadmin (MDVSA-2014:164)
Updated phpmyadmin package fixes security vulnerabilities : In phpMyAdmin before 4.1.14.3, multiple XSS vulnerabilities exist in browse table, ENUM editor, monitor, query charts and table relations pages CVE-2014-5273. In phpMyAdmin before 4.1.14.3, with a crafted view name it is possible to...
openSUSE Security Update : phpMyAdmin (openSUSE-SU-2014:1069-1)
This phpMyAdmin update addresses several security and non security issues : - This is a phpMyAdmin version upgrade bnc892401: From 4.1.14.3 : - sf4501 security XSS in table browse page CVE-2014-5273 - sf4502 security Self-XSS in enum value editor CVE-2014-5273 - sf4503 security Self-XSSes in...
Fedora Update for phpMyAdmin FEDORA-2014-9555
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-5274
Cross-site scripting XSS vulnerability in the view operations page in phpMyAdmin 4.1.x before 4.1.14.3 and 4.2.x before 4.2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name, related to js/functions.js...
CVE-2014-5274
phpMyAdmin 4.1.x prior to 4.1.14.3 and 4.2.x prior to 4.2.7.1 contain a cross-site scripting (XSS) vulnerability in the view operations page. The issue, related to js/functions.js, allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name. Remediation is to ...
XSS in view operations page.
PMASA-2014-9 Announcement-ID: PMASA-2014-9 Date: 2014-08-17 Summary XSS in view operations page. Description With a crafted view name it is possible to trigger an XSS when dropping the view in view operation page. Severity We consider this vulnerability to be non critical. Mitigation factor This...