Lucene search
K

6027 matches found

OSV
OSV
added 2015/10/30 8:11 p.m.6 views

MGASA-2015-0419 Updated phpmyadmin package fixes security vulnerability

Content spoofing vulnerability when redirecting user to an external site CVE-2015-7873...

5CVSS6.1AI score0.02624EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2015/10/30 10:4 a.m.18 views

CVE-2013-3240

Directory traversal vulnerability in the Export feature in phpMyAdmin 4.x before 4.0.0-rc3 allows remote authenticated users to read arbitrary files or possibly have unspecified other impact via a parameter that specifies a crafted export type...

6.5CVSS7.3AI score0.05485EPSS
Exploits5References2
ArchLinux
ArchLinux
added 2015/10/30 12:0 a.m.49 views

phpmyadmin: content spoofing

This vulnerability allows an attacker to perform a content spoofing attack using the phpMyAdmin's redirection mechanism to external sites. This vulnerability is not considered to be critical since the spoofed content is escaped and no HTML injection is possible...

5CVSS1.3AI score0.02624EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/10/30 12:0 a.m.57 views

Debian DSA-3382-1 : phpmyadmin - security update

Several issues have been fixed in phpMyAdmin, the web administration tool for MySQL. - CVE-2014-8958 Wheezy only Multiple cross-site scripting XSS vulnerabilities. - CVE-2014-9218 Wheezy only Denial of service resource consumption via a long password. - CVE-2015-2206 Risk of BREACH attack due to...

6.8CVSS7.8AI score0.11055EPSS
Exploits7References18
CNVD
CNVD
added 2015/10/29 12:0 a.m.0 views

phpMyAdmin redirection function content spoofing vulnerability

phpmyadmin is an online management tool for MySQL databases. A security vulnerability exists in the redirection function of url.php in phpMyAdmin versions 4.4.x-4.4.15.1, 4.5.x-4.5.1. A remote attacker can perform content spoofing via the url parameter...

5CVSS9.5AI score0.02624EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/10/29 12:0 a.m.58 views

Debian DLA-336-1 : phpmyadmin security update

Several issues have been fixed in phpMyAdmin, the web administration tool for MySQL. CVE-2014-8958 Multiple cross-site scripting XSS vulnerabilities. CVE-2014-9218 Denial of service resource consumption via a long password. CVE-2015-2206 Risk of BREACH attack due to reflected parameter...

6.8CVSS7.8AI score0.11055EPSS
Exploits4References6
Debian
Debian
added 2015/10/28 7:55 p.m.43 views

[SECURITY] [DLA 336-1] phpmyadmin security update

Package : phpmyadmin Version : 4:3.3.7-9 CVE ID : CVE-2014-8958 CVE-2014-9218 CVE-2015-2206 CVE-2015-3902 Several issues have been fixed in phpMyAdmin, the web administration tool for MySQL. CVE-2014-8958 Multiple cross-site scripting XSS vulnerabilities. CVE-2014-9218 Denial of service resource...

6.8CVSS9.2AI score0.11055EPSS
Exploits4
Debian
Debian
added 2015/10/28 7:52 p.m.34 views

[SECURITY] [DSA 3382-1] phpmyadmin security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3382-1 [email protected] https://www.debian.org/security/ Thijs Kinkhorst October 28, 2015 https://www.debian.org/security/faq -...

6.8CVSS9.6AI score0.11055EPSS
Exploits7
NVD
NVD
added 2015/10/28 10:59 a.m.18 views

CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

5CVSS6.3AI score0.02624EPSS
Exploits0References8
OSV
OSV
added 2015/10/28 10:59 a.m.3 views

DEBIAN-CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

5CVSS9.4AI score0.02624EPSS
Exploits0References1
OSV
OSV
added 2015/10/28 10:59 a.m.9 views

CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

6.3AI score
Exploits0References9
UbuntuCve
UbuntuCve
added 2015/10/28 10:59 a.m.32 views

CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

5CVSS7.2AI score0.02624EPSS
Exploits0References2
Prion
Prion
added 2015/10/28 10:59 a.m.19 views

Authentication flaw

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

5CVSS6.9AI score0.02624EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2015/10/28 10:59 a.m.4 views

UBUNTU-CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

5CVSS7.3AI score0.02624EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/10/28 10:0 a.m.18 views

CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

6.2AI score0.02624EPSS
Exploits0References8
CVE
CVE
added 2015/10/28 10:0 a.m.75 views

CVE-2015-7873

CVE-2015-7873 affects phpMyAdmin's redirect feature in url.php, enabling content spoofing via the url parameter in affected 4.4.x and 4.5.x branches. Root cause: the url.php redirect logic allows an attacker to steer victims to an external or spoofed page, potentially misleading users. Affected v...

5CVSS6.3AI score0.02624EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2015/10/28 10:0 a.m.26 views

CVE-2015-7873

The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter...

5CVSS6.3AI score0.02624EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/10/28 12:0 a.m.47 views

Debian Security Advisory DSA 3382-1 (phpmyadmin - security update)

Several issues have been fixed in phpMyAdmin, the web administration tool for MySQL. CVE-2014-8958 Wheezy only Multiple cross-site scripting XSS vulnerabilities. CVE-2014-9218 Wheezy only Denial of service resource consumption via a long password. CVE-2015-2206 Risk of BREACH attack due to...

6.8CVSS8AI score0.11055EPSS
Exploits7References1
OSV
OSV
added 2015/10/28 12:0 a.m.38 views

DLA-336-1 phpmyadmin - security update

Bulletin has no description...

6.8CVSS8AI score0.11055EPSS
Exploits4
OSV
OSV
added 2015/10/28 12:0 a.m.40 views

DSA-3382-1 phpmyadmin - security update

Bulletin has no description...

6.8CVSS8.1AI score0.11055EPSS
Exploits7
Rows per page
Query Builder