FreeBSD Ports: phpmyadmin

The remote host is missing an update to the system as announced in the referenced advisory. VID 9b7053fd-3ab5-11da-9484-00123ffe8333 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: phpmyadmin

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

CVE-2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

Cross site scripting

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

DEBIAN-CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

DEBIAN-CVE-2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

CVE-2008-3457

CVE-2008-3457 is a user-assisted XSS in phpMyAdmin’s setup.php, exploitable only in rare scenarios where an attacker can modify config/config.inc.php. Multiple disclosures (Debian DSA-1641-1, OSV, openVAS entries) confirm the vulnerability in phpMyAdmin prior to 2.11.8. Remediation per sources is...

CVE-2008-3456

CVE-2008-3456 affects phpMyAdmin up to version 2.11.x prior to 2.11.8, where pages could be framed by remote domains, enabling cross-site framing that could facilitate spoofing/phishing. The root cause is insufficient framing protection. Upgrading to PHPMyAdmin 2.11.8.x or later fixes the issue (...

CVE-2008-3457

Cross-site scripting XSS vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify...

CVE-2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack...

Fedora 8 : phpMyAdmin-2.11.8.1-1.fc8 (2008-6810)

This update solves PMASA-2008-6 phpMyAdmin security announcement from 2008-07-28: Cross-site Framing; XSS in setup.php; see http://www.phpmyadmin.net/homepage/security.php?issue=PMASA-2008-6 - interface Table list pagination in navi - profiling Profiling causes query to be executed again really...

Fedora 9 : phpMyAdmin-2.11.8.1-1.fc9 (2008-6868)

This update solves PMASA-2008-6 phpMyAdmin security announcement from 2008-07-28: Cross-site Framing; XSS in setup.php; see http://www.phpmyadmin.net/homepage/security.php?issue=PMASA-2008-6 - interface Table list pagination in navi - profiling Profiling causes query to be executed again really...

[SECURITY] Fedora 9 Update: phpMyAdmin-2.11.8.1-1.fc9

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges,export data into various formats a nd ...

[SECURITY] Fedora 8 Update: phpMyAdmin-2.11.8.1-1.fc8

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges,export data into various formats a nd ...