Lucene search
+L

13 matches found

Tenable Nessus
Tenable Nessus
added 2020/12/31 12:0 a.m.139 views

phpMyAdmin 4.9.0 < 4.9.6 / 5.0.0 < 5.0.3 Multiple Vulnerabilities (PMASA-2020-5, PMASA-2020-6)

According to its self-reported version, the phpMyAdmin application hosted on the remote web server is 4.9.x prior to 4.9.6 or 5.0.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature...

9.8CVSS7.7AI score0.67081EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2020/11/19 3:1 p.m.308 views

USN-4639-1: phpMyAdmin vulnerabilities

It was discovered that there was a bug in the way phpMyAdmin handles the phpMyAdmin Configuration Storage tables. An authenticated attacker could use this vulnerability to cause phpmyAdmin to leak sensitive files. CVE-2018-19968 It was discovered that phpMyAdmin incorrectly handled user input. An...

9.8CVSS7.1AI score0.67081EPSS
Exploits10
OpenVAS
OpenVAS
added 2020/11/06 12:0 a.m.22 views

phpMyAdmin < 4.9.6, 5.x < 5.0.3 Multiple Vulnerabilities (PMASA-2020-5, PMASA-2020-6) - Linux

phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.33 views

openSUSE Security Update : phpMyAdmin (openSUSE-2020-1806)

This update for phpMyAdmin fixes the following issues : phpMyAdmin was updated to 4.9.7 boo1177842 : - Fix two factor authentication that was broken in 4.9.6 - Fix incompatibilities with older PHP versions Update to 4.9.6 : - Fixed XSS relating to the transformation feature boo1177561...

9.8CVSS7.4AI score0.67081EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2020/11/03 12:0 a.m.26 views

openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2020:1806-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.1AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/26 12:0 a.m.25 views

Debian: Security Advisory (DLA-2413-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References4
Debian
Debian
added 2020/10/25 11:25 a.m.90 views

[SECURITY] [DLA 2413-1] phpmyadmin security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2413-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA October 25, 2020 https://wiki.debian.org/LTS -...

9.8CVSS9.2AI score0.67081EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.28 views

Fedora: Security Advisory for phpMyAdmin (FEDORA-2020-eadda524a8)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.30 views

Fedora: Security Advisory for phpMyAdmin (FEDORA-2020-4e78c86902)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/17 12:0 a.m.26 views

openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2020:1675-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.1AI score0.67081EPSS
Exploits1References2
Mageia
Mageia
added 2020/10/16 3:44 p.m.33 views

Updated phpmyadmin packages fix security vulnerabilities

A vulnerability was discovered where an attacker can cause an XSS attack through the transformation feature. If an attacker sends a crafted link to the victim with the malicious JavaScript, when the victim clicks on the link, the JavaScript will run and complete the instructions made by the...

9.8CVSS1.8AI score0.67081EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2020/10/10 7:15 p.m.39 views

CVE-2020-26934

phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link...

6.1CVSS6.9AI score0.0219EPSS
Exploits0References5
CVE
CVE
added 2020/10/10 6:27 p.m.256 views

CVE-2020-26934

CVE-2020-26934 affects phpMyAdmin prior to 4.9.6 and 5.x prior to 5.0.3, allowing cross-site scripting through the transformation feature when a crafted link is visited. The issue is documented across multiple advisories confirming an XSS payload via the transformation UI. Remediation shown in co...

6.1CVSS7AI score0.0219EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder