Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.74 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : phpMyAdmin vulnerabilities (USN-4843-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4843-1 advisory. Javier Nieto and Andres Rojas discovered that phpMyAdmin incorrectly managed input in the form of passwords. An attacker could us...

9.8CVSS7.6AI score0.67081EPSS
Exploits19References22
Ubuntu
Ubuntu
added 2020/11/19 3:1 p.m.305 views

USN-4639-1: phpMyAdmin vulnerabilities

It was discovered that there was a bug in the way phpMyAdmin handles the phpMyAdmin Configuration Storage tables. An authenticated attacker could use this vulnerability to cause phpmyAdmin to leak sensitive files. CVE-2018-19968 It was discovered that phpMyAdmin incorrectly handled user input. An...

9.8CVSS7.1AI score0.67081EPSS
Exploits10
Mageia
Mageia
added 2018/03/03 11:41 p.m.29 views

Updated phpmyadmin package fixes a security vulnerability

Updated phpmyadmin package fixes security vulnerability: A self-cross site scripting XSS vulnerability has been reported relating to the central columns feature CVE-2018-7260...

5.4CVSS1.4AI score0.01618EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2018/03/02 12:0 a.m.46 views

Fedora Update for php-phpmyadmin-motranslator FEDORA-2018-147d33439c

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.9AI score0.01618EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/03/02 12:0 a.m.22 views

Fedora Update for phpMyAdmin FEDORA-2018-147d33439c

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.9AI score0.01618EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/02/28 12:0 a.m.28 views

phpMyAdmin XSS Vulnerability (PMASA-2018-1) - Linux

phpMyAdmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.4CVSS5.6AI score0.01618EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/02/26 12:0 a.m.38 views

openSUSE Security Update : phpMyAdmin (openSUSE-2018-206)

This update for phpMyAdmin 4.7.8 fixes the following issues : - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499. %NASLMINLEVEL 70300 C...

8.8CVSS6AI score0.08464EPSS
Exploits6References3
OSV
OSV
added 2018/02/24 9:13 a.m.12 views

OPENSUSE-SU-2018:0536-1 Security update for phpMyAdmin

This update for phpMyAdmin 4.7.8 fixes the following issues: - CVE-2018-7260: self-cross site scripting XSS vulnerability in the central columns feature boo1082188 This version also fixes some minor functionality bugs. The previous update already fixed CVE-2017-1000499...

8.8CVSS6.8AI score0.08464EPSS
Exploits6References3
ArchLinux
ArchLinux
added 2018/02/23 12:0 a.m.21 views

[ASA-201802-11] phpmyadmin: cross-site scripting

Arch Linux Security Advisory ASA-201802-11 ========================================== Severity: Medium Date : 2018-02-23 CVE-ID : CVE-2018-7260 Package : phpmyadmin Type : cross-site scripting Remote : Yes Link : https://security.archlinux.org/AVG-630 Summary ======= The package phpmyadmin before...

5.4CVSS2.6AI score0.01618EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2018/02/21 3:29 p.m.23 views

CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

5.4CVSS6.5AI score0.01618EPSS
Exploits1References6
NVD
NVD
added 2018/02/21 3:29 p.m.13 views

CVE-2018-7260

Cross-site scripting XSS vulnerability in dbcentralcolumns.php in phpMyAdmin before 4.7.8 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

5.4CVSS5.2AI score0.01618EPSS
Exploits1References4
CVE
CVE
added 2018/02/21 3:0 p.m.95 views

CVE-2018-7260

CVE-2018-7260 affects phpMyAdmin (db_central_columns.php) and is a cross-site scripting (XSS) flaw in versions prior to 4.7.8. The issue allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, with impact described in the sources as XSS and partial integrity im...

5.4CVSS5AI score0.01618EPSS
Exploits1References4Affected Software1
phpMyAdmin
phpMyAdmin
added 2018/02/20 12:0 a.m.32 views

Self XSS in central columns feature

PMASA-2018-1 Announcement-ID: PMASA-2018-1 Date: 2018-02-20 Summary Self XSS in central columns feature Description A self-cross site scripting XSS vulnerability has been reported relating to the central columns feature. Severity We consider this vulnerability to be of moderate severity. Mitigati...

5.4CVSS6.2AI score0.01618EPSS
Exploits1Affected Software1
Rows per page
Query Builder