phpMyAdmin SQL Injection Vulnerability (CNVD-2016-13238)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A SQL injection vulnerability exists in phpMyAdmin versions 4.6.x prior to 4.6.4 and 4.4.x prior to 4.4.15.8. The vulnerability can be exploited to execute arbitrary SQL injection commands via the Use...

phpMyAdmin SQL Injection Vulnerability (CNVD-2016-13237)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A SQL injection vulnerability exists in phpMyAdmin. An attacker can exploit this vulnerability to execute arbitrary SQL commands...

[SECURITY] [DLA 757-1] phpmyadmin security update

Package : phpmyadmin Version : 4:3.4.11.1-2+deb7u7 CVE ID : CVE-2016-4412 CVE-2016-6626 CVE-2016-9849 CVE-2016-9850 CVE-2016-9861 CVE-2016-9864 CVE-2016-9865 Various security issues where found and fixed in phpmyadmin in wheezy. CVE-2016-4412 / PMASA-2016-57 A user can be tricked in following a...

phpMyAdmin Denial of Service Vulnerability (CNVD-2016-13104)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A denial of service vulnerability exists in phpMyAdmin, which can be exploited by attackers to cause a denial of service...

phpMyAdmin 'unserialize()' Remote Code Execution Vulnerability

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A remote code execution vulnerability exists in the phpMyAdmin 'unserialize' function, which can be exploited by an attacker to execute arbitrary code within the context of an application...

DLA-757-1 phpmyadmin - security update

Bulletin has no description...

phpMyAdmin path traversal vulnerability (CNVD-2016-12846)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A path traversal vulnerability exists in phpMyAdmin,...

phpMyAdmin path traversal vulnerability (CNVD-2016-12845)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A path traversal vulnerability exists in phpMyAdmin,...

phpMyAdmin cross-site scripting vulnerability (CNVD-2016-12704)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A cross-site scripting vulnerability exists in phpMyAdmin, which can be exploited by attackers to trigger XSS attacks...

phpMyAdmin SQL Injection Vulnerability (CNVD-2016-12703)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A SQL injection vulnerability exists in phpMyAdmin. An attacker can exploit the vulnerability to trigger a SQL injection attack via the export function...

phpMyAdmin Denial of Service Vulnerability (CNVD-2016-12701)

phpmyadmin is an online management tool for MySQL databases. A denial of service vulnerability exists in phpMyAdmin, which can be exploited by attackers to launch denial of service attacks...

phpMyAdmin Denial of Service Vulnerability (CNVD-2016-12702)

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. A denial of service vulnerability exists in phpMyAdmin. phpMyAdmin's conversion feature allows users to trigger the server to launch a denial of service DoS attack...

phpMyAdmin cross-site scripting vulnerability (CNVD-2016-12700)

phpmyadmin is an online management tool for MySQL databases. A cross-site scripting vulnerability exists in phpMyAdmin. Due to the use of a vulnerable JavaScript library, an attacker can exploit the vulnerability to launch a cross-site scripting attack...

phpMyAdmin Path Traversal Vulnerability

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A path traversal vulnerability exists in phpMyAdmin,...

phpMyAdmin 4.0.10.x < 4.0.10.18 / 4.4.15.x < 4.4.15.9 / 4.6.x < 4.6.5 Multiple Vulnerabilities

Binary data 9830.prm...

phpMyAdmin BBCode injection vulnerability

phpmyadmin is an online management tool for MySQL databases. An injection vulnerability exists in version 4.6.x of phpMyAdmin. It is possible for an attacker to inject BBCode into the login page via a constructed login request...

phpMyAdmin Denial of Service Vulnerability (CNVD-2016-12350)

phpmyadmin is an online management tool for MySQL databases. A denial of service vulnerability exists in version 4.6.x of phpMyAdmin. A denial of service can be caused by a larger table partition request...

phpMyAdmin Denial of Service Vulnerability (CNVD-2016-12351)

phpmyadmin is an online management tool for MySQL databases. A denial of service vulnerability exists in phpMyAdmin versions 4.6.x, 4.4.x, 4.0.x. The vulnerability can be exploited by configuring $cfg'AllowArbitraryServer'=true. Configuring $cfg'AllowArbitraryServer'=true allows an attacker to...

ALPINE-CVE-2016-9866

An issue was discovered in phpMyAdmin. When the argseparator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to...

CVE-2016-9866

An issue was discovered in phpMyAdmin. When the argseparator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions prior to 4.6.5, 4.4.x versions prior to 4.4.15.9, and 4.0.x versions prior to...