Lucene search
K

10 matches found

Packet Storm
Packet Storm
added 2018/08/31 12:0 a.m.99 views

phpMyAdmin 4.7.x Cross Site Request Forgery

Exploit Title: phpMyAdmin 4.7.x - Cross-Site Request Forgery Date: 2018-08-28 Exploit Author: VulnSpy Vendor Homepage: https://www.phpmyadmin.net/ Software Link: https://www.phpmyadmin.net/downloads/ Version: Versions 4.7.x prior to 4.7.7 Tested on: php7 mysql5 CVE: CVE-2017-1000499 Exploit CSRF ...

6.8CVSS1AI score0.08464EPSS
Exploits5
exploitpack
exploitpack
added 2018/08/29 12:0 a.m.17 views

phpMyAdmin 4.7.x - Cross-Site Request Forgery

phpMyAdmin 4.7.x - Cross-Site Request Forgery Exploit Title: phpMyAdmin 4.7.x - Cross-Site Request Forgery Date: 2018-08-28 Exploit Author: VulnSpy Vendor Homepage: https://www.phpmyadmin.net/ Software Link: https://www.phpmyadmin.net/downloads/ Version: Versions 4.7.x prior to 4.7.7 Tested on:...

6.8CVSS0.9AI score0.08464EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/08/29 12:0 a.m.54 views

phpMyAdmin 4.7.x - Cross-Site Request Forgery

Exploit Title: phpMyAdmin 4.7.x - Cross-Site Request Forgery Date: 2018-08-28 Exploit Author: VulnSpy Vendor Homepage: https://www.phpmyadmin.net/ Software Link: https://www.phpmyadmin.net/downloads/ Version: Versions 4.7.x prior to 4.7.7 Tested on: php7 mysql5 CVE: CVE-2017-1000499 -- Original...

8.8CVSS8.7AI score0.08464EPSS
Exploits5
0day.today
0day.today
added 2018/08/29 12:0 a.m.183 views

phpMyAdmin 4.7.x - Cross-Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: phpMyAdmin 4.7.x - Cross-Site Request Forgery Exploit Author: VulnSpy Vendor Homepage: https://www.phpmyadmin.net/ Software Link: https://www.phpmyadmin.net/downloads/ Version: Versions 4.7.x prior to 4.7.7 Tested on: php7 mysql...

7.2CVSS0.3AI score0.08464EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2018/02/26 12:0 a.m.38 views

openSUSE Security Update : phpMyAdmin (openSUSE-2018-206)

This update for phpMyAdmin 4.7.8 fixes the following issues : - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499. %NASLMINLEVEL 70300 C...

8.8CVSS6AI score0.08464EPSS
Exploits6References3
OSV
OSV
added 2018/02/24 9:13 a.m.12 views

OPENSUSE-SU-2018:0536-1 Security update for phpMyAdmin

This update for phpMyAdmin 4.7.8 fixes the following issues: - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499...

8.8CVSS6.8AI score0.08464EPSS
Exploits6References3
Check Point Advisories
Check Point Advisories
added 2018/01/10 12:0 a.m.52 views

Web servers PHPMyAdmin Suspicious Table Hyperlink (CVE-2017-1000499)

A PhpMyAdmin user could be subject to a phishing attack. This is due to the way PhpMyAdmin handles modify requests. A successful attack could lead to malicious SQL command execution...

6.8CVSS3.2AI score0.08464EPSS
Exploits5
OSV
OSV
added 2018/01/03 2:29 p.m.20 views

CVE-2017-1000499

phpMyAdmin versions 4.7.x prior to 4.7.6.1/4.7.7 are vulnerable to a CSRF weakness. By deceiving a user to click on a crafted URL, it is possible to perform harmful database operations such as deleting records, dropping/truncating tables etc...

8.8CVSS8.8AI score
Exploits0References4
CVE
CVE
added 2018/01/03 2:0 p.m.81 views

CVE-2017-1000499

CVE-2017-1000499 affects phpMyAdmin 4.7.x prior to 4.7.7 (and 4.7.6.1) with a CSRF weakness that allows an attacker to trick a logged-in admin into performing destructive DB operations (e.g., DELETE/DROP). The issue is caused by insufficient CSRF protections in phpMyAdmin’s request handling, enab...

8.8CVSS8.3AI score0.08464EPSS
Exploits5References4Affected Software1
phpMyAdmin
phpMyAdmin
added 2017/12/20 12:0 a.m.43 views

XSRF/CSRF vulnerability in phpMyAdmin

PMASA-2017-9 Announcement-ID: PMASA-2017-9 Date: 2017-12-20 Updated: 2018-01-03 Summary XSRF/CSRF vulnerability in phpMyAdmin Description By deceiving a user to click on a crafted URL, it is possible to perform harmful database operations such as deleting records, dropping/truncating tables etc...

8.8CVSS7.2AI score0.08464EPSS
Exploits5Affected Software1
Rows per page
Query Builder