CVE-2005-3787

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.6.4-pl4 allow remote attackers to inject arbitrary web script or HTML via 1 the cookie-based login panel, 2 the title parameter and 3 the table creation dialog...

CVE-2005-3787

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.6.4-pl4 allow remote attackers to inject arbitrary web script or HTML via 1 the cookie-based login panel, 2 the title parameter and 3 the table creation dialog...

CVE-2005-3787

CVE-2005-3787 concerns multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.6.4-pl4 . The issues allow remote attackers to inject arbitrary script/HTML via (1) the cookie-based login panel, (2) the title parameter, and (3) the table creation dialog. The connected documents...

XSS vulnerabilities

PMASA-2005-7 Announcement-ID: PMASA-2005-7 Date: 2005-11-23 Summary XSS vulnerabilities Description During the course of phpMyAdmin 2.6.4 development, some XSS vulnerabilities were fixed but were not documented here. The cookie-based login panel, the title parameter and the table creation dialog...

SUSE-SA:2005:066: phpMyAdmin

The remote host is missing the patch for the advisory SUSE-SA:2005:066 phpMyAdmin. The MySQL configuration frontend phpMyAdmin was updated to fix the following security problems which can be remotely exploited: - Multiple cross-site scripting XSS bugs CVE-2005-3301, CVE-2005-2869, PMASA-2005-5. -...

CVE-2005-3621

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts...

CVE-2005-3622

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory...

DEBIAN-CVE-2005-3622

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory...

CVE-2005-3621

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts...

DEBIAN-CVE-2005-3621

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts...

CVE-2005-3621

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts...

CVE-2005-3622

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory...

CVE-2005-3622

Summary: CVE-2005-3622 affects phpMyAdmin 2.7.0-beta1 and earlier, where remote attackers can obtain the server’s full path by directly requesting multiple scripts in the libraries directory. Impact: information disclosure of server path; no other integrity/confidentiality/vulnerability details p...

CVE-2005-3621

CVE-2005-3621 is a CRLF injection vulnerability in phpMyAdmin prior to 2.6.4-pl4 that enables HTTP response splitting via unspecified scripts. The vulnerability is documented in multiple sources (e.g., Debian DSA advisories and GHSA entries) and is associated with phpMyAdmin. The connected OpenVA...

CVE-2005-3621

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts...

CVE-2005-3622

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory...

CVE-2005-3621

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts...

CVE-2005-3622

phpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory...

HTTP Response Splitting vulnerability

PMASA-2005-6 Announcement-ID: PMASA-2005-6 Date: 2005-11-15 Summary HTTP Response Splitting vulnerability Description Some scripts in phpMyAdmin are vulnerable to an HTTP Response Splitting attack. Severity We consider these vulnerabilities to be serious. However, they can only be triggered on...

[Full-disclosure] [FS-05-02] Multiple vulnerabilities in phpMyAdmin

=============================================================================== Security Advisory http://www.fitsec.com/advisories/FS-05-02.txt Severity: Low/Medium Title: Multiple vulnerabilities in phpMyAdmin Date: 12.11.2005 ID: FS-05-02 Author: Toni Koivunen toni.koivunen at fitsec.com - - - ...