Lucene search
K

6027 matches found

seebug.org
seebug.org
added 2016/05/09 12:0 a.m.26 views

Office Anywhere 网络智能办公系统某版本前台获取数据库(无需登录)

简要描述: Office Anywhere 网络智能办公系统某版本前台获取数据库(无需登录) 详细说明: Office Anywhere 2011 网络智能办公系统 存在一个通用路径泄漏问题,而泄漏的登录地址可以不需要权限登录到phpmyadmin 且权限为root /mysql/main.php 解密出来可直接登录,这里就不登录进去了 漏洞证明: 附部分案例: http://218.24.163.216:8080/ http://220.171.81.126:1234/ http://221.2.43.9:8000/ http://221.204.213.24/...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/04/12 12:0 a.m.200 views

phpMyAdmin Multiple Path Disclosure Vulnerabilities (PMASA-2016-1, PMASA-2016-6, PMASA-2016-8)

The phpMyAdmin application hosted on the remote web server is affected by multiple path disclosure vulnerabilities in multiple scripts. An unauthenticated, remote attacker can exploit these vulnerabilities, via a specially crafted request, to disclose the full path of the directory where phpMyAdm...

5.3CVSS6AI score0.02564EPSS
Exploits0References6
Fedora
Fedora
added 2016/03/14 12:20 a.m.35 views

[SECURITY] Fedora 22 Update: php-udan11-sql-parser-3.4.0-1.fc22

A validating SQL lexer and parser with a focus on MySQL dialect. This library was originally developed for phpMyAdmin during the Google Summer of Code 2015. To use this library, you just have to add, in your project: requireonce '/usr/share/php/SqlParser/autoload.php';...

6.8CVSS3.9AI score0.03109EPSS
Exploits0
Fedora
Fedora
added 2016/03/14 12:20 a.m.36 views

[SECURITY] Fedora 22 Update: phpMyAdmin-4.5.5.1-1.fc22

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

6.8CVSS1.3AI score0.03109EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/03/14 12:0 a.m.28 views

Fedora 22 : php-udan11-sql-parser-3.4.0-1.fc22 / phpMyAdmin-4.5.5.1-1.fc22 (2016-02ee5b4002)

phpMyAdmin 4.5.5.1 2016-02-29 =============================== This release fixes multiple XSS vulnerabilities, please see PMASA-2016-10, PMASA-2016-11, and PMASA-2016-12 for details; additionally it fixes a vulnerability allowing man- in-the-middle attack on an API call to GitHub, see PMASA-2016-...

6.8CVSS6.6AI score0.03109EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2016/03/14 12:0 a.m.26 views

Fedora Update for phpMyAdmin FEDORA-2016-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.2AI score0.03109EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/10 12:0 a.m.33 views

Fedora 23 : php-udan11-sql-parser-3.4.0-1.fc23 / phpMyAdmin-4.5.5.1-1.fc23 (2016-65da02b95c)

phpMyAdmin 4.5.5.1 2016-02-29 =============================== This release fixes multiple XSS vulnerabilities, please see PMASA-2016-10, PMASA-2016-11, and PMASA-2016-12 for details; additionally it fixes a vulnerability allowing man- in-the-middle attack on an API call to GitHub, see PMASA-2016-...

6.8CVSS6.6AI score0.03109EPSS
Exploits0References10
Typo3
Typo3
added 2016/03/10 12:0 a.m.94 views

Multiple vulnerabilities in extension phpMyAdmin (phpmyadmin)

It has been discovered that the extension "phpMyAdmin" phpmyadmin is susceptible to unsafe comparison of XSRF/CSRF token, multiple full path disclosure vulnerabilities, multiple XSS vulnerabilities, insecure password generation in JavaScript. Release Date: March 10, 2016 Component Type: Third par...

5CVSS0.2AI score0.02688EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2016/03/10 12:0 a.m.29 views

Fedora Update for phpMyAdmin FEDORA-2016-65

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.2AI score0.03109EPSS
Exploits0References2
Fedora
Fedora
added 2016/03/09 8:16 p.m.27 views

[SECURITY] Fedora 23 Update: php-udan11-sql-parser-3.4.0-1.fc23

A validating SQL lexer and parser with a focus on MySQL dialect. This library was originally developed for phpMyAdmin during the Google Summer of Code 2015. To use this library, you just have to add, in your project: requireonce '/usr/share/php/SqlParser/autoload.php';...

6.8CVSS3.9AI score0.03109EPSS
Exploits0
Fedora
Fedora
added 2016/03/09 8:16 p.m.28 views

[SECURITY] Fedora 23 Update: phpMyAdmin-4.5.5.1-1.fc23

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

6.8CVSS1.3AI score0.03109EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/03/07 12:0 a.m.25 views

openSUSE Security Update : phpMyAdmin (openSUSE-2016-305)

This update to phpMyAdmin 4.4.15.4 fixes the following security issues : - CVE-2016-2560: Multiple XSS vulnerabilities PMASA-2016-11 boo968938 - CVE-2016-2561: Multiple XSS vulnerabilities PMASA-2016-12 boo968941 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...

6.1CVSS6.3AI score0.03109EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/03/07 12:0 a.m.31 views

openSUSE Security Update : phpMyAdmin (openSUSE-2016-304)

This update to phpMyAdmin 4.4.15.4 fixes the following security issues : - CVE-2016-2560: Multiple XSS vulnerabilities PMASA-2016-11 boo968938 - CVE-2016-2561: Multiple XSS vulnerabilities PMASA-2016-12 boo968941 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...

6.1CVSS6.3AI score0.03109EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.9 views

Fedora 23 : phpMyAdmin-4.5.3.1-1.fc23 (2015-deb2bbdde0)

phpMyAdmin 4.5.3.1 2015-12-25 =============================== - Undefined offset 2 - Security Path disclosure, see PMASA-2015-6 ---- phpMyAdmin 4.5.3.0 2015-12-23 =============================== - Incomplete results of UNION ALL - MATCH AGAINST keywords not recognized - syntax verifier is not...

5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.20 views

Fedora 22 : phpMyAdmin-4.5.3.1-1.fc22 (2015-345966871c)

phpMyAdmin 4.5.3.1 2015-12-25 =============================== - Undefined offset 2 - Security Path disclosure, see PMASA-2015-6 ---- phpMyAdmin 4.5.3.0 2015-12-23 =============================== - Incomplete results of UNION ALL - MATCH AGAINST keywords not recognized - syntax verifier is not...

5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.23 views

Fedora 21 : php-udan11-sql-parser-3.0.4-1.fc21 / phpMyAdmin-4.5.1-1.fc21 (2015-5c06260c4b)

phpMyAdmin 4.5.1.0 2015-10-23 =============================== - Invalid argument supplied for foreach - arraykeyexists expects parameter 2 to be array - Notice Undefined index: dropdatabase - Server variable edition in ANSIQUOTES sqlmode: losing current value - Propose table structure broken -...

5CVSS8.4AI score0.02624EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.29 views

Fedora 22 : phpMyAdmin-4.5.4-1.fc22 (2016-e1fe01e96e)

phpMyAdmin 4.5.4 2016-01-28 ============================= - live data edit of big sets is not working - Table list not saved in db QBE bookmarked search - While 'changing a column', query fails with a syntax error after the 'CHARSET=' keyword - Avoid syntax error in JavaScript messages on invalid...

7.5CVSS6.5AI score0.02688EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.27 views

Fedora 22 : php-udan11-sql-parser-3.0.4-1.fc22 / phpMyAdmin-4.5.1-1.fc22 (2015-17908c56c1)

phpMyAdmin 4.5.1.0 2015-10-23 =============================== - Invalid argument supplied for foreach - arraykeyexists expects parameter 2 to be array - Notice Undefined index: dropdatabase - Server variable edition in ANSIQUOTES sqlmode: losing current value - Propose table structure broken -...

5CVSS8.4AI score0.02624EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.91 views

Fedora 23 : phpMyAdmin-4.5.4.1-1.fc23 (2016-e55278763e)

phpMyAdmin 4.5.4.1 2016-01-28 =============================== - Error with PMA 4.4.15.3 - Remove hard dependency on phpseclib phpMyAdmin 4.5.4 2016-01-28 ============================= - live data edit of big sets is not working - Table list not saved in db QBE bookmarked search - While 'changing ...

7.5CVSS6.5AI score0.02688EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.20 views

Fedora 23 : php-udan11-sql-parser-3.0.4-1.fc23 / phpMyAdmin-4.5.1-1.fc23 (2015-287c164df5)

phpMyAdmin 4.5.1.0 2015-10-23 =============================== - Invalid argument supplied for foreach - arraykeyexists expects parameter 2 to be array - Notice Undefined index: dropdatabase - Server variable edition in ANSIQUOTES sqlmode: losing current value - Propose table structure broken -...

5CVSS8.4AI score0.02624EPSS
Exploits0References4
Rows per page
Query Builder