Fedora 8 : phpMyAdmin-2.11.3-1.fc8 (2007-4334)

Upstream released 2.11.3 - Removed the RPM scriptlets doing httpd restarts 227025 - Patched an information disclosure known as CVE-2007-0095 221694 - Provide virtual phpmyadmin package and a httpd alias 231431 Note that Tenable Network Security has extracted the preceding description block...

Fedora 7 : phpMyAdmin-2.11.3-1.fc7 (2007-4298)

Upstream released 2.11.3 - Removed the RPM scriptlets doing httpd restarts 227025 - Patched an information disclosure known as CVE-2007-0095 221694 - Provide virtual phpmyadmin package and a httpd alias 231431 Note that Tenable Network Security has extracted the preceding description block...

phpMyAdmin DB_Create.PHP多个输入验证漏洞

BUGTRAQ ID: 26512 CVE ID:CVE-2007-5976 CVE-2007-5977 CNCVE ID:CNCVE-20075977 phpMyAdmin是一款基于WEB的MySQL管理程序。 phpMyAdmin DBCreate.PHP存在多个输入验证问题，远程攻击者可以利用漏洞进行跨站脚本攻击，获得敏感信息。 问题是由于DBCreate.PHP对参数缺少充分过滤，提交恶意脚本代码作为参数数据，并诱使用户解析，可导致恶意脚本代码在目标用户浏览器上执行。 RedHat Fedora 7 0 phpMyAdmin phpMyAdmin 2.11.1 phpMyAdmi...

Fedora 7 : phpMyAdmin-2.11.2.2-1.fc7 (2007-3666)

The login page authtype cookie was vulnerable to XSS via the convcharset parameter PMASA-2007-8. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

Fedora 8 : phpMyAdmin-2.11.2.1-1.fc8 (2007-3636)

Tue Nov 20 2007 Mike McGrath 2.11.2.1-1 - Upstream released new version - Mon Oct 29 2007 Mike McGrath 2.11.2-1 - upstream released new version - Mon Oct 22 2007 Mike McGrath 2.11.1.2-1 - upstream released new version Note that Tenable Network Security has extracted the preceding description...

Fedora 8 : phpMyAdmin-2.11.2.2-1.fc8 (2007-3639)

The login page authtype cookie was vulnerable to XSS via the convcharset parameter PMASA-2007-8. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

FreeBSD : phpmyadmin -- XSS (15485ae8-9848-11dc-9e48-0016179b2dd5)

phpMyAdmin security announcement : The login page authtype cookie was vulnerable to XSS via the convcharset parameter. An attacker could use this to execute malicious code on the visitors computer %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

Fedora 7 : phpMyAdmin-2.11.2.1-1.fc7 (2007-3627)

Tue Nov 20 2007 Mike McGrath 2.11.2.1-1 - Upstream released new version - Mon Oct 29 2007 Mike McGrath 2.11.2-1 - upstream released new version - Mon Oct 22 2007 Mike McGrath 2.11.1.2-1 - upstream released new version - Thu Sep 6 2007 Mike McGrath 2.11.0-1 - Upstream released new version -...

CVE-2007-6100

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

DEBIAN-CVE-2007-6100

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

Cross site scripting

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

CVE-2007-6100

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

CVE-2007-6100

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

CVE-2007-6100

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

CVE-2007-6100

Cross-site scripting XSS vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie authtype, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability...

CVE-2007-6100

CVE-2007-6100 is a cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 2.11.2.2. The flaw occurs in libraries/auth/cookie.auth.lib.php where, when logins use cookie auth_type, an attacker can inject script via the convcharset parameter to index.php. The issue affects phpMyAdmin versio...

phpMyAdmin登录页跨站脚本漏洞

phpMyAdmin是一款基于WEB的MySQL管理程序。 phpMyAdmin登录页不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行跨站脚本攻击，可获得敏感信息或未授权访问应用程序。 问题是登录页authtype cookie存在输入验证问题，通过提交恶意脚本代码作为convcharset参数数据，可导致恶意脚本代码在浏览器上执行，可获得敏感信息或未授权访问应用程序。 phpMyAdmin phpMyAdmin 2.11.1 phpMyAdmin phpMyAdmin 2.9.1 phpMyAdmin phpMyAdmin 2.9 rc1 phpMyAdmin...

[SECURITY] Fedora 7 Update: phpMyAdmin-2.11.2.2-1.fc7

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges,export data into various formats a nd ...

[SECURITY] Fedora 8 Update: phpMyAdmin-2.11.2.2-1.fc8

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges,export data into various formats a nd ...

[SECURITY] Fedora 8 Update: phpMyAdmin-2.11.2.1-1.fc8

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the Web. Currently it can create and drop databases, create/drop/alter tables, delete/edit/add fields, execute any SQL statement, manage keys on fields, manage privileges,export data into various formats a nd ...