9 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-2561
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject...
Fedora Update for php-udan11-sql-parser FEDORA-2016-02
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : phpMyAdmin (openSUSE-2016-305)
This update to phpMyAdmin 4.4.15.4 fixes the following security issues : - CVE-2016-2560: Multiple XSS vulnerabilities PMASA-2016-11 boo968938 - CVE-2016-2561: Multiple XSS vulnerabilities PMASA-2016-12 boo968941 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...
Updated phpmyadmin packages fix security vulnerabilities
Updated phpmyadmin package fixes security vulnerabilities: Multiple cross-site scripting XSS issues in phpMyAdmin before 4.4.15.5 CVE-2016-2560, CVE-2016-2561...
CVE-2016-2561
Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via 1 normalization.php or 2 js/normalization.js in the database normalization page, 3...
CVE-2016-2561
Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via 1 normalization.php or 2 js/normalization.js in the database normalization page, 3...
CVE-2016-2561
CVE-2016-2561 affects phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1, allowing remote authenticated users to inject arbitrary web script/HTML via multiple vectors (notably normalization.php, js/normalization.js, sortable_header.phtml, and the pos parameter to db_central_columns.php). T...
CVE-2016-2561
Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via 1 normalization.php or 2 js/normalization.js in the database normalization page, 3...
Multiple XSS vulnerabilities.
PMASA-2016-12 Announcement-ID: PMASA-2016-12 Date: 2016-02-25 Summary Multiple XSS vulnerabilities. Description With a crafted table/column name it is possible to trigger an XSS attack in the database normalization page. With a crafted parameter it is possible to trigger an XSS attack in the...