CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6027 matches found

Debian CVE•added 2007/01/18 2:0 a.m.•31 views

CVE-2007-0341

Cross-site scripting XSS vulnerability in phpMyAdmin 2.8.1 and earlier, when Microsoft Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via a javascript: URI in a CSS style in the convcharset parameter to the top-level URI, a different vulnerability than...

6.8CVSS5.4AI score0.01302EPSS

Exploits1

CVE•added 2007/01/18 2:0 a.m.•61 views

CVE-2007-0341

phpMyAdmin 2.8.1 and earlier have an XSS in IE6 where a javascript: URI in a CSS style within the convcharset parameter to the top-level URI allows remote attackers to inject arbitrary script/HTML. This is a different vulnerability from CVE-2005-0992; the provided documents do not specify a patch...

6.8CVSS5.5AI score0.01302EPSS

Exploits1References3Affected Software1

phpMyAdmin•added 2007/01/16 12:0 a.m.•31 views

HTTP Response Splitting vulnerability

PMASA-2007-1 Announcement-ID: PMASA-2007-1 Date: 2007-01-16 Summary HTTP Response Splitting vulnerability Description On systems running PHP 5 before 5.1.2 or PHP 4 before 4.4.2, it is possible to trigger this vulnerability by editing the cookie containing PHP's session id. This can be used to se...

7.5CVSS5.8AI score0.01382EPSS

Exploits0Affected Software1

phpMyAdmin•added 2007/01/16 12:0 a.m.•34 views

XSS and Path Disclosure vulnerabilities

PMASA-2007-2 Announcement-ID: PMASA-2007-2 Date: 2007-01-16 Summary XSS and Path Disclosure vulnerabilities Description We received an advisory from Laurent Gaffié and we wish to thank him for his work. It was possible to trigger these attacks on dbcreate.php and index.php. Severity We consider...

4.3CVSS5.7AI score0.0142EPSS

Exploits1Affected Software1

Packet Storm•added 2007/01/14 12:0 a.m.•38 views

phpmyadmin-xss.txt

--------------------------------------------------------------------------------- | . | | \ \ / /||/ | | | \ Y / | \ \ \ | \ \ \ / / | | \ / | || | /| | | | // \ | | / |||| || |/ //\ \ | | / / | | Security without illusions | | www.virtuax.be | | |...

0.1AI score

Exploits0

securityvulns•added 2007/01/12 12:0 a.m.•77 views

xss in phpmyadmin <= 2.8.1

although = v2.8.2 isn't vulnerable anymore, i still think this issue is important because phpmyadmin.net still offers 2.7.2-pl2 for download on their website and this is a vulnerable version. it's an xss bug that wasn't fixed properly reference:...

1.9AI score

Exploits0

UbuntuCve•added 2007/01/11 11:28 a.m.•24 views

CVE-2007-0203

Multiple unspecified vulnerabilities in phpMyAdmin before 2.9.2-rc1 have unknown impact and attack vectors...

10CVSS5.8AI score0.01808EPSS

Exploits0References1

Prion•added 2007/01/11 11:28 a.m.•23 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.9.2-rc1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information...

6.8CVSS5.9AI score0.01432EPSS

Exploits0References7Affected Software1

UbuntuCve•added 2007/01/11 11:28 a.m.•18 views

CVE-2007-0204

6.8CVSS6AI score0.01432EPSS

Exploits0References1