Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.74 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : phpMyAdmin vulnerabilities (USN-4843-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4843-1 advisory. Javier Nieto and Andres Rojas discovered that phpMyAdmin incorrectly managed input in the form of passwords. An attacker could us...

9.8CVSS7.6AI score0.67081EPSS
Exploits19References22
OpenVAS
OpenVAS
added 2018/05/03 12:0 a.m.609 views

phpMyAdmin Security Bypass Vulnerability-PMASA-2017-8

phpMyAdmin is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; i...

9.8CVSS9.3AI score0.02991EPSS
Exploits0References1
OSV
OSV
added 2018/05/01 5:29 p.m.2 views

DEBIAN-CVE-2017-18264

An issue was discovered in libraries/common.inc.php in phpMyAdmin 4.0 before 4.0.10.20, 4.4.x, 4.6.x, and 4.7.0 prereleases. The restrictions caused by $cfg'Servers'$i'AllowNoPassword' = false are bypassed under certain PHP versions e.g., version 5. This can allow the login of users who have no...

9.8CVSS9.6AI score0.02991EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/05/01 5:0 p.m.32 views

CVE-2017-18264

An issue was discovered in libraries/common.inc.php in phpMyAdmin 4.0 before 4.0.10.20, 4.4.x, 4.6.x, and 4.7.0 prereleases. The restrictions caused by $cfg'Servers'$i'AllowNoPassword' = false are bypassed under certain PHP versions e.g., version 5. This can allow the login of users who have no...

9.4AI score0.02991EPSS
Exploits0References3
phpMyAdmin
phpMyAdmin
added 2017/03/28 12:0 a.m.339 views

Bypass $cfg['Servers'][$i]['AllowNoPassword']

PMASA-2017-8 Announcement-ID: PMASA-2017-8 Date: 2017-03-28 Updated: 2018-05-01 Summary Bypass $cfg'Servers'$i'AllowNoPassword' Description A vulnerability was discovered where the restrictions caused by $cfg'Servers'$i'AllowNoPassword' = false are bypassed under certain PHP versions. This can...

9.8CVSS7.2AI score0.02991EPSS
Exploits0Affected Software1
Rows per page
Query Builder