PT-2019-13558 · Centos · Centos Web Panel

Name of the Vulnerable Software and Affected Versions: CentOS Web Panel version 0.9.8.851 Description: An insecure object reference in CentOS Web Panel allows an attacker to discover phpMyAdmin passwords of any user in /etc/passwd via an attacker account. Recommendations: For version 0.9.8.851,...

CORS-Vulnerable-Lab: with COSR configuration error related to the vulnerability code range-vulnerability warning-the black bar safety net

This repository contains the CORS configuration error related to the vulnerable code. You can be on the local machine to configure the vulnerable code, and to the actual use of the CORS related error configuration issue. In this case, I would first like to thank@albinowax, the AKReddy, And Vivek...

Security update for phpMyAdmin (moderate)

openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2019:1861-1 Rating: moderate References: 1137496 1137497 Cross-References: CVE-2019-11768 CVE-2019-12616 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...

OPENSUSE-SU-2019:1861-1 Security update for phpMyAdmin

This update for phpMyAdmin fixes the following issues: phpMyAdmin was updated to 4.9.0.1: Several issues with SYSTEM VERSIONING tables Fixed json encode error in export Fixed JavaScript events not activating on input sql bookmark issue Show Designer combo boxes when adding a constraint Fix edit...

CVE-2018-20886

cPanel before 74.0.0 insecurely stores phpMyAdmin session files SEC-418...

CVE-2018-20886

cPanel before 74.0.0 insecurely stores phpMyAdmin session files SEC-418...

Design/Logic Flaw

cPanel before 74.0.0 insecurely stores phpMyAdmin session files SEC-418...

CVE-2018-20886

CVE-2018-20886 affects cPanel prior to version 74.0.0, where phpMyAdmin session files are stored insecurely. The entry cites a storage flaw that can impact confidentiality, integrity, and availability at a partial level (local access required; low attack complexity). Exploitation status and speci...

CVE-2018-20886

cPanel before 74.0.0 insecurely stores phpMyAdmin session files SEC-418...

phpMyAdmin 4.0 < 4.8.5 Multiple Vulnerabilities (PMASA-2019-1), (PMASA-2019-2)

According to its self-reported version, the phpMyAdmin application hosted on the remote web server is 4.0.x prior to 4.8.5. It is, therefore, affected by multiple vulnerabilities. - When AllowArbitraryServer configuration set to true, with the use of a rogue MySQL server, an attacker can read any...

openSUSE Security Update : phpMyAdmin (openSUSE-2019-1689)

This update for phpMyAdmin fixes the following issues : phpMyAdmin was updated to 4.9.0.1 : - Several issues with SYSTEM VERSIONING tables - Fixed json encode error in export - Fixed JavaScript events not activating on input sql bookmark issue - Show Designer combo boxes when adding a constraint ...

openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2019:1689-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:1689-1 Security update for phpMyAdmin

This update for phpMyAdmin fixes the following issues: phpMyAdmin was updated to 4.9.0.1: Several issues with SYSTEM VERSIONING tables Fixed json encode error in export Fixed JavaScript events not activating on input sql bookmark issue Show Designer combo boxes when adding a constraint Fix edit...

Security update for phpMyAdmin (moderate)

openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2019:1689-1 Rating: moderate References: 1137496 1137497 Cross-References: CVE-2019-11768 CVE-2019-12616 Affected Products: openSUSE Leap 42.3 openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 SUSE...

Multiple vulnerabilities in extension "phpMyAdmin" (phpmyadmin)

Multiple vulnerabilities have been found in the phpMyAdmin component...

Updated phpmyadmin packages fix security vulnerabilities

Updated phpmyadmin packages fix security vulnerabilities: A vulnerability was reported where a specially crafted database name can be used to trigger an SQL injection attack through the designer feature. CVE-2019-11768, PMASA-2019-3 A vulnerability was found that allows an attacker to trigger a...

MGASA-2019-0200 Updated phpmyadmin packages fix security vulnerabilities

Updated phpmyadmin packages fix security vulnerabilities: A vulnerability was reported where a specially crafted database name can be used to trigger an SQL injection attack through the designer feature. CVE-2019-11768, PMASA-2019-3 A vulnerability was found that allows an attacker to trigger a...

phpMyAdmin Cross-Site Request Forgery (CVE-2019-12616)

A cross-site request forgery vulnerability exists in phpMyAdmin. A remote attacker can exploit this vulnerability by enticing a target authenticated user to visit a specially crafted page...

Debian: Security Advisory (DLA-1821-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-1821-1 : phpmyadmin security update

Multiple security vulnerabilities were fixed in phpmyadmin, a MySQL web administration tool, which prevent possible SQL injection attacks, CSRF, the bypass of user restrictions, information disclosure or denial of service. For Debian 8 'Jessie', these problems have been fixed in version...