Fedora 13 : phpMyAdmin-3.3.9.2-1.fc13 (2011-1373)

Changes for 3.3.9.1 2011-02-08 - security Path disclosure, see PMASA-2011-1 - http://www.phpmyadmin.net/homepage/security/PMASA-201 1-1.php Changes for 3.3.9.2 2011-02-11 - security SQL injection, see PMASA-2011-2 - http://www.phpmyadmin.net/homepage/security/PMASA-201 1-2.php Note that Tenable...

Fedora 14 : phpMyAdmin-3.3.9.2-1.fc14 (2011-1408)

Changes for 3.3.9.1 2011-02-08 - security Path disclosure, see PMASA-2011-1 - http://www.phpmyadmin.net/homepage/security/PMASA-201 1-1.php Changes for 3.3.9.2 2011-02-11 - security SQL injection, see PMASA-2011-2 - http://www.phpmyadmin.net/homepage/security/PMASA-201 1-2.php Note that Tenable...

Fedora Update for phpMyAdmin FEDORA-2011-1373

Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2011-1373 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora Update for phpMyAdmin FEDORA-2011-1408

Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2011-1408 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora Update for phpMyAdmin FEDORA-2011-1373

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Уязвимости в phpMyAdmin

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Brute Force и Full path disclosure уязвимостях в phpMyAdmin. CVE id: CVE-2011-0986. Brute Force WASC-11: http://site/phpmyadmin/ В форме логина нет защиты от Brute Force атак. Full path disclosure WASC-13: http://site/phpmyadmin/readme.php если не...

Fedora Update for phpMyAdmin FEDORA-2011-1408

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

[SECURITY] Fedora 14 Update: phpMyAdmin-3.3.9.2-1.fc14

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges, export data into various formats and ...

[SECURITY] Fedora 13 Update: phpMyAdmin-3.3.9.2-1.fc13

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges, export data into various formats and ...

phpMyAdmin < 3.4.0 beta 3 'db' Parameter Stored XSS Vulnerability - Active Check

phpMyAdmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Debian DSA-2167-1 : phpmyadmin - SQL injection

It was discovered that phpMyAdmin, a tool to administer MySQL over the web, when the bookmarks feature is enabled, allowed to create a bookmarked query which would be executed unintentionally by other users. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

[SECURITY] [DSA 2167-1] phpmyadmin security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2167-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst February 16, 2011 http://www.debian.org/security/faq -...

DSA-2167-1 phpmyadmin - sql injection

Bulletin has no description...

Mandriva Update for phpmyadmin MDVSA-2011:026 (phpmyadmin)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Mandriva Update for phpmyadmin MDVSA-2011:026 (phpmyadmin)

Check for the Version of phpmyadmin OpenVAS Vulnerability Test Mandriva Update for phpmyadmin MDVSA-2011:026 phpmyadmin Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...

phpMyAdmin Bookmark Security Bypass Vulnerability

phpMyAdmin is prone to a security bypass vulnerability that affects bookmarks. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

phpMyAdmin 2.x < 2.11.11.3 / 3.x < 3.3.9.2 SQLi (PMASA-2011-2)

Binary data 5797.prm...

phpMyAdmin 3.3.x < 3.3.10.1 / 3.4.x < 3.4.1 Multiple Vulnerabilities

Binary data 5930.prm...

CVE-2011-0987

The PMABookmarkget function in libraries/bookmark.lib.php in phpMyAdmin 2.11.x before 2.11.11.3, and 3.3.x before 3.3.9.2, does not properly restrict bookmark queries, which makes it easier for remote authenticated users to trigger another user's execution of a SQL query by creating a bookmark...

DEBIAN-CVE-2011-0987

The PMABookmarkget function in libraries/bookmark.lib.php in phpMyAdmin 2.11.x before 2.11.11.3, and 3.3.x before 3.3.9.2, does not properly restrict bookmark queries, which makes it easier for remote authenticated users to trigger another user's execution of a SQL query by creating a bookmark...