30 matches found
EUVD-2014-4901
Malware in sbrugna...
EUVD-2006-6927
Malware in sbrugna...
EUVD-2016-5412
Malware in sbrugna...
EUVD-2009-4571
Malware in sbrugna...
EUVD-2004-2621
Malware in sbrugna...
EUVD-2011-4552
Malware in sbrugna...
EUVD-2005-3619
Malware in sbrugna...
EUVD-2013-3178
Malware in sbrugna...
EUVD-2008-3442
Malware in sbrugna...
EUVD-2016-6644
Malware in sbrugna...
phpMyAdmin allows remote attackers to obtain installation path via direct request for nonexistent file
phpMyAdmin 2.11.x before 2.11.11.2, and 3.3.x before 3.3.9.1, does not properly handle the absence of the 1 README, 2 ChangeLog, and 3 LICENSE files, which allows remote attackers to obtain the installation path via a direct request for a nonexistent file...
phpMyAdmin Cross-site Scripting vulnerability
Cross-site scripting XSS vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTML via the host parameter...
phpMyAdmin cross-site scripting vulnerability (CNVD-2021-45285)
phpMyAdmin is a PHP written, Web-based MySQL and MariaDB open source management tools. A cross-site scripting vulnerability exists in the conversion function in phpMyAdmin. An attacker can exploit this vulnerability to execute malicious JavaScript via a specially crafted link...
MGASA-2020-0150 Updated phpmyadmin packages fix security vulnerability
Some SQL injections via table names and parameters were fixed...
MGASA-2019-0357 Updated phpmyadmin packages fix security vulnerability
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/ table name can be used to trigger a SQL injection attack through the designer feature CVE-2019-18622...
MGASA-2018-0304 Updated phpmyadmin packages fix security vulnerability
A Cross-Site Scripting vulnerability was found in the Designer feature, where an attacker can deliver a payload to a user through a specially-crafted database name...
CVE-2018-12613
An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include view and potentially execute files on the server. The vulnerability comes from a portion of code where pages are redirected and loaded within phpMyAdmin, and an improper test for whitelisted pages. An...
MGASA-2018-0156 Updated phpmyadmin package fixes a security vulnerability
Updated phpmyadmin package fixes security vulnerability: A self-cross site scripting XSS vulnerability has been reported relating to the central columns feature CVE-2018-7260...
Updated phpmyadmin package fixes a security vulnerability
Updated phpmyadmin package fixes security vulnerability: A self-cross site scripting XSS vulnerability has been reported relating to the central columns feature CVE-2018-7260...
MGASA-2016-0002 Updated phpmyadmin packages fix security vulnerability
By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed CVE-2015-8669...