4627 matches found
CVE-2015-8669
libraries/config/messages.inc.php in phpMyAdmin 4.0.x before 4.0.10.12, 4.4.x before 4.4.15.2, and 4.5.x before 4.5.3.1 allows remote attackers to obtain sensitive information via a crafted request, which reveals the full path in an error message...
CVE-2015-8669
libraries/config/messages.inc.php in phpMyAdmin 4.0.x before 4.0.10.12, 4.4.x before 4.4.15.2, and 4.5.x before 4.5.3.1 allows remote attackers to obtain sensitive information via a crafted request, which reveals the full path in an error message...
Full path disclosure vulnerability
PMASA-2015-6 Announcement-ID: PMASA-2015-6 Date: 2015-12-25 Summary Full path disclosure vulnerability Description By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the...
phpMyAdmin -- path disclosure vulnerability
The phpMyAdmin development team reports: By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. We consider these vulnerabilities to ...
phpMyAdmin Content spoofing vulnerability (Nov 2015) - Windows
phpMyAdmin is prone to content spoofing vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...
phpMyAdmin Content spoofing vulnerability (Nov 2015) - Linux
phpMyAdmin is prone to content spoofing vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...
phpMyAdmin Security Bypass Vulnerability (Nov 2015) - Linux
phpMyAdmin is prone to reCaptcha bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...
phpMyAdmin Security Bypass Vulnerability (Nov 2015) - Windows
phpMyAdmin is prone to reCaptcha bypass vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin";...
openSUSE Security Update : phpMyAdmin (openSUSE-2015-712)
phpMyAdmin was updated to fix one security issue. This security issue was fixed : - CVE-2015-7873: The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allowed remote attackers to spoof content via the url parameter bsc951960. %NASLMINLEVEL 70300 C Tenable...
Fedora Update for phpMyAdmin FEDORA-2015-5
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 21 Update: phpMyAdmin-4.5.1-1.fc21
phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...
openSUSE Security Update : phpMyAdmin (openSUSE-2015-710)
phpMyAdmin was updated to version 4.4.15.1 to fix one security issue. This security issue was fixed : - CVE-2015-7873: The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allowed remote attackers to spoof content via the url parameter bsc951960...
Mageia: Security Advisory (MGASA-2015-0419)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for phpMyAdmin FEDORA-2015-17908
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 22 Update: php-udan11-sql-parser-3.0.4-1.fc22
A validating SQL lexer and parser with a focus on MySQL dialect. This library was originally developed for phpMyAdmin during the Google Summer of Code 2015. To use this library, you just have to add, in your project: requireonce '/usr/share/php/SqlParser/autoload.php';...
[SECURITY] Fedora 22 Update: phpMyAdmin-4.5.1-1.fc22
phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...
Updated phpmyadmin package fixes security vulnerability
Content spoofing vulnerability when redirecting user to an external site CVE-2015-7873...
CVE-2013-3240
Directory traversal vulnerability in the Export feature in phpMyAdmin 4.x before 4.0.0-rc3 allows remote authenticated users to read arbitrary files or possibly have unspecified other impact via a parameter that specifies a crafted export type...
phpmyadmin: content spoofing
This vulnerability allows an attacker to perform a content spoofing attack using the phpMyAdmin's redirection mechanism to external sites. This vulnerability is not considered to be critical since the spoofed content is escaped and no HTML injection is possible...
Debian DSA-3382-1 : phpmyadmin - security update
Several issues have been fixed in phpMyAdmin, the web administration tool for MySQL. - CVE-2014-8958 Wheezy only Multiple cross-site scripting XSS vulnerabilities. - CVE-2014-9218 Wheezy only Denial of service resource consumption via a long password. - CVE-2015-2206 Risk of BREACH attack due to...