Debian DSA-1370-1 : phpmyadmin - several vulnerabilities

Several remote vulnerabilities have been discovered in phpMyAdmin, a program to administrate MySQL over the web. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1325 The PMAArrayWalkRecursive function in libraries/common.lib.php does not limit...

[SECURITY] [DSA 1370-2] New phpmyadmin packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1370-2 [email protected] http://www.debian.org/security/ Thijs Kinkhorst September 10th, 2007 http://www.debian.org/security/faq -...

DSA-1370-1 phpmyadmin - several vulnerabilities

Bulletin has no description...

DSA-1370-2 phpmyadmin - several vulnerabilities

Bulletin has no description...

[SECURITY] [DSA 1370-1] New phpmyadmin packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1370-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst September 9th, 2007 http://www.debian.org/security/faq -...

CVE-2007-4306

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

CVE-2007-4306

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

DEBIAN-CVE-2007-4306

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

CVE-2007-4306

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

CVE-2007-4306

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

CVE-2007-4306

CVE-2007-4306 corresponds to multiple XSS vulnerabilities in phpMyAdmin 2.10.3. The affected component set includes: tbl_export.php (parameters unlim_num_rows, sql_query, pos), sql.php (session_max_rows, pos), server_privileges.php (username), and main.php (sql_query). The description notes that ...

CVE-2007-4306

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2 sqlquery, or 3 pos parameter to a tblexport.php; the 4 sessionmaxrows or 5 pos parameter to b sql.php; the 6 username parameter to c...

phpMyAdmin multiple XSS vuln.

phpMyAdmin multiple XSS vuln. Vuln. discovered by : r0t Date: 10 August 2007 vendor:http://www.phpmyadmin.net/ orginal advisory: http://pridels-team.blogspot.com/2007/08/phpmyadmin-multiple-xss-vuln.html affected versions:2.10.3 latest stable version prior versions also can be affected. phpMyAdmi...

Information Disclosure from phpmyadmin

An information disclosure issue has been found in the phpmyadmin extension of TYPO3 that may give access to phpinfo information in special cases. The standalone version of phpmyadmin is not affected. Component Type: Third party extension. This extension is not part of the TYPO3 default...

Use the telnet method export, import, Forum mysql database-vulnerability warning-the black bar safety net

To 1. The method presented here is mainly applicable to VB and other forums. Use the TELNET method can be existing on the server database to export,then import this data to another server,use this method can achieve the Forum in two Server Migration; or the server existing on the forum moved to...

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in DCP-Portal 6.1.1 allow remote attackers to execute arbitrary PHP code via a URL in 1 the path parameter to library/adodb/adodb.inc.php, 2 the abspatheditor parameter to library/editor/editor.php, or 3 the cfgfiletoload parameter to...

CVE-2007-2245

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.10.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the fieldkey parameter to browseforeigners.php or 2 certain input to the PMAsanitize function...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.10.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the fieldkey parameter to browseforeigners.php or 2 certain input to the PMAsanitize function...

CVE-2007-2245

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.10.1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the fieldkey parameter to browseforeigners.php or 2 certain input to the PMAsanitize function...