CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6017 matches found

FreeBSD•added 2005/02/01 12:0 a.m.•31 views

phpmyadmin -- increased privilege vulnerability

The phpMyAdmin team reports: Escaping of the "" character was not properly done, giving a wildcard privilege when editing db-specific privileges with phpMyAdmin...

4.6CVSS6.6AI score0.00156EPSS

Exploits0References2

OSV•added 2005/01/10 5:0 a.m.•4 views

CVE-2004-1147

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters...

7.8AI score

Exploits0References3

OSV•added 2005/01/10 5:0 a.m.•1 views

DEBIAN-CVE-2004-1147

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters...

10CVSS7.8AI score0.04568EPSS

Exploits0References1

NVD•added 2005/01/10 5:0 a.m.•12 views

CVE-2004-1148

phpMyAdmin before 2.6.1, when configured with UploadDir functionality, allows remote attackers to read arbitrary files via the sqllocalfile parameter...

5CVSS6.5AI score0.00391EPSS

Exploits0References3

NVD•added 2005/01/10 5:0 a.m.•12 views

CVE-2004-1147

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters...

10CVSS7.5AI score0.04568EPSS

Exploits0References3

OSV•added 2005/01/10 5:0 a.m.•5 views

CVE-2004-1148

phpMyAdmin before 2.6.1, when configured with UploadDir functionality, allows remote attackers to read arbitrary files via the sqllocalfile parameter...

6.8AI score

Exploits0References3

OSV•added 2005/01/10 5:0 a.m.•1 views

DEBIAN-CVE-2004-1148

phpMyAdmin before 2.6.1, when configured with UploadDir functionality, allows remote attackers to read arbitrary files via the sqllocalfile parameter...

5CVSS6.6AI score0.00391EPSS

Exploits0References1

OSV•added 2004/12/31 5:0 a.m.•1 views

DEBIAN-CVE-2004-2631

Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name...

7.5CVSS7.8AI score0.14197EPSS

Exploits1References1

NVD•added 2004/12/31 5:0 a.m.•14 views

CVE-2004-2630

The MIME transformation system transformations/textplainexternal.inc.php in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors...

7.5CVSS7.4AI score0.02091EPSS

Exploits0References10

NVD•added 2004/12/31 5:0 a.m.•17 views

CVE-2004-2631

Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name...

7.5CVSS7.6AI score0.14197EPSS

Exploits1References12

OSV•added 2004/12/31 5:0 a.m.•4 views

CVE-2004-2630

7.4AI score

Exploits0References11

OSV•added 2004/12/31 5:0 a.m.•1 views

DEBIAN-CVE-2004-2630

7.5CVSS7.5AI score0.02091EPSS

Exploits0References1

OSV•added 2004/12/31 5:0 a.m.•4 views

CVE-2004-2632

phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg'Servers' variables...

6.9AI score

Exploits0References12

NVD•added 2004/12/31 5:0 a.m.•18 views

CVE-2004-2632

phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg'Servers' variables...

7.5CVSS6.6AI score0.02951EPSS

Exploits1References10

OSV•added 2004/12/31 5:0 a.m.•1 views

DEBIAN-CVE-2004-2632

phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg'Servers' variables...

7.5CVSS7AI score0.02951EPSS

Exploits1References1

OSV•added 2004/12/31 5:0 a.m.•5 views

CVE-2004-2631

Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name...

7.8AI score

Exploits0References14

Tenable Nessus•added 2004/12/20 12:0 a.m.•38 views

GLSA-200412-19 : phpMyAdmin: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200412-19 phpMyAdmin: Multiple vulnerabilities Nicolas Gregoire exaprobe.com has discovered two vulnerabilities that exist only on a webserver where PHP safemode is off. These vulnerabilities could lead to command execution or fil...

10CVSS5.8AI score0.04568EPSS

Exploits0References5

Gentoo Linux•added 2004/12/19 12:0 a.m.•38 views

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL databases from a web-browser. Description Nicolas Gregoire exaprobe.com has discovered two vulnerabilities that exist only on a webserver where PHP safemode is off. These vulnerabilities could lead to...

10CVSS1AI score0.04568EPSS

Exploits0

Cvelist•added 2004/12/15 5:0 a.m.•16 views

CVE-2004-1147

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters...

7.4AI score0.04568EPSS

Exploits0References3

Debian CVE•added 2004/12/15 5:0 a.m.•20 views

CVE-2004-1147

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters...

10CVSS7.4AI score0.04568EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by