Lucene search
K

6027 matches found

OpenVAS
OpenVAS
added 2016/03/03 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2016-0092)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.3AI score0.03109EPSS
Exploits0References7
OSV
OSV
added 2016/03/02 6:28 p.m.10 views

MGASA-2016-0092 Updated phpmyadmin packages fix security vulnerabilities

Updated phpmyadmin package fixes security vulnerabilities: Multiple cross-site scripting XSS issues in phpMyAdmin before 4.4.15.5 CVE-2016-2560, CVE-2016-2561...

6.1CVSS5.8AI score0.03109EPSS
Exploits0References6
Mageia
Mageia
added 2016/03/02 6:28 p.m.34 views

Updated phpmyadmin packages fix security vulnerabilities

Updated phpmyadmin package fixes security vulnerabilities: Multiple cross-site scripting XSS issues in phpMyAdmin before 4.4.15.5 CVE-2016-2560, CVE-2016-2561...

6.1CVSS1.5AI score0.03109EPSS
Exploits0References5
CNVD
CNVD
added 2016/03/02 12:0 a.m.5 views

phpMyAdmin SQL Parser Cross-Site Scripting Vulnerability

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A cross-site scripting vulnerability exists in the S...

5.4CVSS6.3AI score0.01712EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/03/02 12:0 a.m.28 views

phpMyAdmin 4.5.x < 4.5.4 Multiple Vulnerabilities (PMASA-2016-8, PMASA-2016-9)

Binary data 9117.prm...

5.4CVSS6AI score0.02033EPSS
Exploits0References5
CNVD
CNVD
added 2016/03/02 12:0 a.m.4 views

phpMyAdmin man-in-the-middle attack vulnerability (CNVD-2016-01427)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A security vulnerability exists in phpMyAdmin versio...

6.8CVSS9.5AI score0.00772EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/03/02 12:0 a.m.33 views

phpMyAdmin 4.4.x < 4.4.15.1 / 4.5.x < 4.5.1 Content Spoofing Vulnerability (PMASA-2015-5)

Binary data 9118.prm...

5CVSS7.3AI score0.02624EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/03/02 12:0 a.m.25 views

phpMyAdmin 4.4.x < 4.4.15.3 / 4.5.x < 4.5.4 Multiple Vulnerabilities (PMASA-2016-6, PMASA-2016-7)

Binary data 9116.prm...

5.4CVSS5.9AI score0.02383EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/03/02 12:0 a.m.31 views

phpMyAdmin 4.0.x < 4.0.10.13 / 4.4.x < 4.4.15.3 / 4.5.x < 4.5.4 Multiple Vulnerabilities (PMASA-2016-1 - PMASA-2016-5)

Binary data 9115.prm...

7.5CVSS6.6AI score0.02688EPSS
Exploits0References11
CNVD
CNVD
added 2016/03/02 12:0 a.m.4 views

phpMyAdmin cross-site scripting vulnerability (CNVD-2016-01415)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A cross-site scripting vulnerability exists in...

5.4CVSS7.3AI score0.02468EPSS
Exploits0References1
CNVD
CNVD
added 2016/03/02 12:0 a.m.1 views

phpMyAdmin cross-site scripting vulnerability (CNVD-2016-01426)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A cross-site scripting vulnerability exists in...

6.1CVSS7.3AI score0.03109EPSS
Exploits0References1
NVD
NVD
added 2016/03/01 11:59 a.m.18 views

CVE-2016-2562

The checkHTTP function in libraries/Config.class.php in phpMyAdmin 4.5.x before 4.5.5.1 does not verify X.509 certificates from api.github.com SSL servers, which allows man-in-the-middle attackers to spoof these servers and obtain sensitive information via a crafted certificate...

6.8CVSS6.2AI score0.00772EPSS
Exploits0References4
OSV
OSV
added 2016/03/01 11:59 a.m.7 views

CVE-2016-2562

The checkHTTP function in libraries/Config.class.php in phpMyAdmin 4.5.x before 4.5.5.1 does not verify X.509 certificates from api.github.com SSL servers, which allows man-in-the-middle attackers to spoof these servers and obtain sensitive information via a crafted certificate...

6.8CVSS6.2AI score
Exploits0References4
OSV
OSV
added 2016/03/01 11:59 a.m.1 views

DEBIAN-CVE-2016-2562

The checkHTTP function in libraries/Config.class.php in phpMyAdmin 4.5.x before 4.5.5.1 does not verify X.509 certificates from api.github.com SSL servers, which allows man-in-the-middle attackers to spoof these servers and obtain sensitive information via a crafted certificate...

6.8CVSS9AI score0.00772EPSS
Exploits0References1
NVD
NVD
added 2016/03/01 11:59 a.m.17 views

CVE-2016-2561

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via 1 normalization.php or 2 js/normalization.js in the database normalization page, 3...

5.4CVSS5.8AI score0.02468EPSS
Exploits0References12
OSV
OSV
added 2016/03/01 11:59 a.m.7 views

CVE-2016-2561

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via 1 normalization.php or 2 js/normalization.js in the database normalization page, 3...

5.4CVSS5.6AI score
Exploits0References12
OSV
OSV
added 2016/03/01 11:59 a.m.1 views

DEBIAN-CVE-2016-2561

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.5 and 4.5.x before 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via 1 normalization.php or 2 js/normalization.js in the database normalization page, 3...

5.4CVSS5.8AI score0.02468EPSS
Exploits0References1
NVD
NVD
added 2016/03/01 11:59 a.m.19 views

CVE-2016-2560

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.15, 4.4.x before 4.4.15.5, and 4.5.x before 4.5.5.1 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted Host HTTP header, related to libraries/Config.class.php; 2 crafted JSON data, relat...

6.1CVSS6.4AI score0.03109EPSS
Exploits0References11
OSV
OSV
added 2016/03/01 11:59 a.m.2 views

DEBIAN-CVE-2016-2560

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.15, 4.4.x before 4.4.15.5, and 4.5.x before 4.5.5.1 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted Host HTTP header, related to libraries/Config.class.php; 2 crafted JSON data, relat...

6.1CVSS6.4AI score0.03109EPSS
Exploits0References1
OSV
OSV
added 2016/03/01 11:59 a.m.12 views

CVE-2016-2560

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.15, 4.4.x before 4.4.15.5, and 4.5.x before 4.5.5.1 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted Host HTTP header, related to libraries/Config.class.php; 2 crafted JSON data, relat...

6.1CVSS6.4AI score
Exploits0References11
Rows per page
Query Builder