Cross site scripting

Cross-site scripting XSS vulnerability in phpMyAdmin before 3.2.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted SQL bookmark...

CVE-2009-2284

CVE-2009-2284 affects phpMyAdmin prior to 3.2.0.1. It is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via a crafted SQL bookmark. Multiple connected advisories (Fedora/OpenVAS/Nessus entries) corroborate an XSS issue in this phpMyA...

CVE-2009-2284

Cross-site scripting XSS vulnerability in phpMyAdmin before 3.2.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted SQL bookmark...

CVE-2009-2284

Cross-site scripting XSS vulnerability in phpMyAdmin before 3.2.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted SQL bookmark...

FreeBSD : phpmyadmin -- XSS vulnerability (ba73f494-65a8-11de-aef5-001c2514716c)

The phpMyAdmin project reports : It was possible to conduct an XSS attack via a crafted SQL bookmark. All 3.x releases on which the 'bookmarks' feature is active are affected, previous versions are not. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks i...

phpmyadmin -- XSS vulnerability

The phpMyAdmin project reports: It was possible to conduct an XSS attack via a crafted SQL bookmark. All 3.x releases on which the "bookmarks" feature is active are affected, previous versions are not...

Debian Security Advisory DSA 1824-1 (phpmyadmin)

The remote host is missing an update to phpmyadmin announced via advisory DSA 1824-1. OpenVAS Vulnerability Test $Id: deb18241.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1824-1 phpmyadmin Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. LinksExchanger - Crossite scripting. phpMyAdmin - Crossite scripting...

GLSA-200906-03 : phpMyAdmin: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200906-03 phpMyAdmin: Multiple vulnerabilities Multiple vulnerabilities have been reported in phpMyAdmin: Greg Ose discovered that the setup script does not sanitize input properly, leading to the injection of arbitrary PHP code...

Debian DSA-1824-1 : phpmyadmin - several vulnerabilities

Several remote vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1150 Cross site scripting vulnerability in the export page allow for an attacker that can pla...

XSS vulnerability

PMASA-2009-5 Announcement-ID: PMASA-2009-5 Date: 2009-06-30 Summary XSS vulnerability Description It was possible to conduct an XSS attack via a crafted SQL bookmark. Severity We consider this vulnerability to be serious. Affected Versions For 2.11.x: versions are not affected. For 3.x: All 3.x...

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been reported in phpMyAdmin: Greg Ose discovered that the setup script does not sanitize input properly, leading to the injection of arbitrary PHP code into the configuration file...

Debian: Security Advisory (DSA-1824-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 1824-1] New phpmyadmin packages fix several vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1824-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst June 25, 2009 http://www.debian.org/security/faq -...

[SECURITY] [DSA 1824-1] New phpmyadmin packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1824-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst June 25, 2009 http://www.debian.org/security/faq -...

DSA-1824-1 phpmyadmin - several vulnerabilities

Bulletin has no description...

pmaPWN! - phpMyAdmin Code Injection RCE Scanner & Exploit

No description provided by source. ?php $list = array '/phpmyadmin/', '/phpMyAdmin/', '/PMA/', '/pma/', '/admin/', '/dbadmin/', '/mysql/', '/myadmin/', '/phpmyadmin2/', '/phpMyAdmin2/', '/phpMyAdmin-2/', '/php-my-admin/', '/phpMyAdmin-2.2.3/', '/phpMyAdmin-2.2.6/', '/phpMyAdmin-2.5.1/',...

phpMyAdmin - 'pmaPWN!' Code Injection / Remote Code Execution

?php $list = array '/phpmyadmin/', '/phpMyAdmin/', '/PMA/', '/pma/', '/admin/', '/dbadmin/', '/mysql/', '/myadmin/', '/phpmyadmin2/', '/phpMyAdmin2/', '/phpMyAdmin-2/', '/php-my-admin/', '/phpMyAdmin-2.2.3/', '/phpMyAdmin-2.2.6/', '/phpMyAdmin-2.5.1/', '/phpMyAdmin-2.5.4/',...

pmaPWN! - phpMyAdmin Code Injection RCE Scanner & Exploit

Exploit for unknown platform in category web applications ========================================================= pmaPWN! - phpMyAdmin Code Injection RCE Scanner & Exploit ========================================================= ?php $list = array '/phpmyadmin/', '/phpMyAdmin/', '/PMA/',...

phpMyAdmin - pmaPWN! Code Injection Remote Code Execution

phpMyAdmin - pmaPWN! Code Injection Remote Code Execution ?php $list = array '/phpmyadmin/', '/phpMyAdmin/', '/PMA/', '/pma/', '/admin/', '/dbadmin/', '/mysql/', '/myadmin/', '/phpmyadmin2/', '/phpMyAdmin2/', '/phpMyAdmin-2/', '/php-my-admin/', '/phpMyAdmin-2.2.3/', '/phpMyAdmin-2.2.6/',...