Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Prion
Prionadded 2014/12/26 2:59 a.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted row that triggers an improperly constructed confirmation message after inline-editing and save operations, related to 1...

3.5CVSS5.6AI score0.0018EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVEadded 2014/12/26 2:0 a.m.18 views

CVE-2011-3592

Multiple cross-site scripting XSS vulnerabilities in the PMAunInlineEditRow function in js/sql.js in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a 1 database name, 2 table name, or 3 column name that is not properly handled after an...

3.5CVSS5.4AI score0.0018EPSS
Exploits0
NVD
NVDadded 2012/01/26 3:55 p.m.20 views

CVE-2011-1940

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.3.x before 3.3.10.1 and 3.4.x before 3.4.1 allow remote attackers to inject arbitrary web script or HTML via a crafted table name that triggers improper HTML rendering on a Tracking page, related to 1 libraries/tbllinks.inc.php and...

4.3CVSS6.1AI score0.00285EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2011/12/22 8:55 p.m.23 views

CVE-2011-4634

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 3.4.x before 3.4.8 allow remote attackers to inject arbitrary web script or HTML via 1 a crafted database name, related to the Database Synchronize panel; 2 a crafted database name, related to the Database rename panel; 3 a crafted S...

4.3CVSS7.3AI score0.00421EPSS
Exploits1References2
phpMyAdmin
phpMyAdminadded 2011/12/21 12:0 a.m.30 views

XSS in setup.

PMASA-2011-19 Announcement-ID: PMASA-2011-19 Date: 2011-12-21 Summary XSS in setup. Description Crafted values entered in the setup interface can produce XSS; also, if the config directory exists and is writeable, the XSS payload can be saved to this directory. Severity We consider this...

4.3CVSS7.2AI score0.00475EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessusadded 2011/10/03 12:0 a.m.10 views

phpMyAdmin 3.4.x < 3.4.5 XSS (PMASA-2011-14)

The version of phpMyAdmin on the remote host is 3.4.x prior to 3.4.5. This version is affected by multiple cross-site scripting vulnerabilities: - The data used in the row content display after inline editing is not properly sanitized before it is passed back to the browser. - The data passed in ...

5.8AI score
Exploits0References1
UbuntuCve
UbuntuCveadded 2011/07/14 11:55 p.m.28 views

CVE-2011-2505

libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication feature in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 assigns values to arbitrary parameters referenced in the query string, which allows remote attackers to modify the SESSION superglobal array via a crafted...

6.4CVSS6.1AI score0.37008EPSS
Exploits15References1
Rows per page
Query Builder