Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2015-3903

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libraries/Config.class.php in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 disables X.509 certifica...

4.3CVSS8.1AI score0.01597EPSS
Exploits1References2
Debian
Debian
added 2015/10/28 7:52 p.m.34 views

[SECURITY] [DSA 3382-1] phpmyadmin security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3382-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst October 28, 2015 https://www.debian.org/security/faq -...

6.8CVSS9.6AI score0.11055EPSS
Exploits7
OpenVAS
OpenVAS
added 2015/06/04 12:0 a.m.30 views

phpMyAdmin Multiple Vulnerabilities -01 (Jun 2015)

phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...

6.8CVSS6.3AI score0.01597EPSS
Exploits1References4
OSV
OSV
added 2015/05/26 3:59 p.m.7 views

CVE-2015-3903

libraries/Config.class.php in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 disables X.509 certificate verification for GitHub API calls over SSL, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information...

5.6AI score
Exploits0References10
CVE
CVE
added 2015/05/26 3:0 p.m.87 views

CVE-2015-3903

Summary: CVE-2015-3903 affects phpMyAdmin versions before specific fixes and is due to a flaw in the libraries/Config.class.php module that disables SSL certificate verification for GitHub API calls. This enables MITM attackers to spoof the GitHub API endpoint and potentially exfiltrate sensitive...

4.3CVSS5.6AI score0.01597EPSS
Exploits1References9Affected Software1
Mageia
Mageia
added 2015/05/18 7:8 p.m.45 views

Updated phpmyadmin packages fix security vulnerabilities

Updated phpmyadmin package fixes security vulnerabilities: In phpMyAdmin before 4.2.13.3, by deceiving a user to click on a crafted URL, it is possible to alter the configuration file being generated with phpMyAdmin setup CVE-2015-3902. In phpMyAdmin before 4.2.13.3, a vulnerability in the API ca...

6.8CVSS6.2AI score0.01597EPSS
Exploits1References4
securityvulns
securityvulns
added 2015/05/18 12:0 a.m.285 views

phpMyAdmin 4.4.6 Man-In-the-Middle API Github

phpMyAdmin 4.4.6 Man-In-the-Middle to API Github CVE-2015-3903 Author: Maksymilian Arciemowicz from https://cxsecurity.com Issue type: CWE-295 Source URL: http://cxsecurity.com/issue/WLB-2015050095 --- Description --- As we can read CURLOPTSSLVERIFYPEER option...

4.3CVSS0.1AI score0.01597EPSS
Exploits1
phpMyAdmin
phpMyAdmin
added 2015/05/13 12:0 a.m.36 views

Vulnerability allowing man-in-the-middle attack on API call to GitHub.

PMASA-2015-3 Announcement-ID: PMASA-2015-3 Date: 2015-05-13 Summary Vulnerability allowing man-in-the-middle attack on API call to GitHub. Description A vulnerability in the API call to GitHub can be exploited to perform a man-in-the-middle attack. Severity We consider this vulnerability to be...

4.3CVSS7.2AI score0.01597EPSS
Exploits1Affected Software1
Rows per page
Query Builder