Lucene search
+L

13 matches found

Tenable Nessus
Tenable Nessus
added 2020/12/31 12:0 a.m.139 views

phpMyAdmin 4.9.0 < 4.9.6 / 5.0.0 < 5.0.3 Multiple Vulnerabilities (PMASA-2020-5, PMASA-2020-6)

According to its self-reported version, the phpMyAdmin application hosted on the remote web server is 4.9.x prior to 4.9.6 or 5.0.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature...

9.8CVSS7.7AI score0.67081EPSS
Exploits1References4
Ubuntu
Ubuntu
added 2020/11/19 3:1 p.m.308 views

USN-4639-1: phpMyAdmin vulnerabilities

It was discovered that there was a bug in the way phpMyAdmin handles the phpMyAdmin Configuration Storage tables. An authenticated attacker could use this vulnerability to cause phpmyAdmin to leak sensitive files. CVE-2018-19968 It was discovered that phpMyAdmin incorrectly handled user input. An...

9.8CVSS7.1AI score0.67081EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.32 views

openSUSE Security Update : phpMyAdmin (openSUSE-2020-1806)

This update for phpMyAdmin fixes the following issues : phpMyAdmin was updated to 4.9.7 boo1177842 : - Fix two factor authentication that was broken in 4.9.6 - Fix incompatibilities with older PHP versions Update to 4.9.6 : - Fixed XSS relating to the transformation feature boo1177561...

9.8CVSS7.4AI score0.67081EPSS
Exploits1References11
OpenVAS
OpenVAS
added 2020/11/06 12:0 a.m.22 views

phpMyAdmin < 4.9.6, 5.x < 5.0.3 Multiple Vulnerabilities (PMASA-2020-5, PMASA-2020-6) - Linux

phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/11/03 12:0 a.m.26 views

openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2020:1806-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.1AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/26 12:0 a.m.25 views

Debian: Security Advisory (DLA-2413-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References4
Debian
Debian
added 2020/10/25 11:25 a.m.85 views

[SECURITY] [DLA 2413-1] phpmyadmin security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2413-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA October 25, 2020 https://wiki.debian.org/LTS -...

9.8CVSS9.2AI score0.67081EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.28 views

Fedora: Security Advisory for phpMyAdmin (FEDORA-2020-eadda524a8)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.30 views

Fedora: Security Advisory for phpMyAdmin (FEDORA-2020-4e78c86902)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.67081EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/10/17 12:0 a.m.26 views

openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2020:1675-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.1AI score0.67081EPSS
Exploits1References2
Mageia
Mageia
added 2020/10/16 3:44 p.m.33 views

Updated phpmyadmin packages fix security vulnerabilities

A vulnerability was discovered where an attacker can cause an XSS attack through the transformation feature. If an attacker sends a crafted link to the victim with the malicious JavaScript, when the victim clicks on the link, the JavaScript will run and complete the instructions made by the...

9.8CVSS1.8AI score0.67081EPSS
Exploits1References4
OSV
OSV
added 2020/10/10 7:15 p.m.32 views

CVE-2020-26935

An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query...

9.8CVSS7.4AI score
Exploits0References9
CVE
CVE
added 2020/10/10 6:26 p.m.323 views

CVE-2020-26935

CVE-2020-26935 affects phpMyAdmin, where a SQL injection vulnerability exists in how the SearchController processes SQL statements in the search feature. Vulnerable when running phpMyAdmin versions prior to 4.9.6 and 5.x prior to 5.0.3. Successful exploitation could allow an attacker to inject ma...

9.8CVSS9.4AI score0.67081EPSS
Exploits1References9Affected Software1
Rows per page
Query Builder