phpMyAdmin -- Self-XSS due to unescaped HTML output in import.

The phpMyAdmin development team reports: When importing a file with crafted filename, it is possible to trigger an XSS. We consider this vulnerability to be non critical...

phpMYAdmin goto Parameter PHP Code Execution - Ver2 (CVE-2001-0478)

A code execution vulnerability has been reported in phpMYAdmin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

phpMYAdmin goto Parameter PHP Code Execution - Ver2 (CVE-2001-0478)

A code execution vulnerability has been reported in phpMYAdmin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

openSUSE: Security Advisory for update (openSUSE-SU-2013:1343-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE Update for update openSUSE-SU-2013:1343-1 (update)

Check for the Version of update OpenVAS Vulnerability Test $Id: gbsuse201313431.nasl 8509 2018-01-24 06:57:46Z teissa $ SuSE Update for update openSUSE-SU-2013:1343-1 update Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program ...

Fedora Update for phpMyAdmin FEDORA-2013-18794

Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2013-18794 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora Update for phpMyAdmin FEDORA-2013-18794

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for phpMyAdmin FEDORA-2013-18802

Check for the Version of phpMyAdmin OpenVAS Vulnerability Test Fedora Update for phpMyAdmin FEDORA-2013-18802 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora 18 : phpMyAdmin-3.5.8.2-1.fc18 (2013-18802)

Security update for PMASA-2013-8, PMASA-2013-9, PMASA-2013-11, PMASA-2013-12 PMASA-2013-14 and PMASA-2013-15 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

Fedora Update for phpMyAdmin FEDORA-2013-18802

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 20 : phpMyAdmin-3.5.8.2-1.fc20 (2013-18705)

Security update for PMASA-2013-8, PMASA-2013-9, PMASA-2013-11, PMASA-2013-12 PMASA-2013-14 and PMASA-2013-15 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

Fedora 19 : phpMyAdmin-3.5.8.2-1.fc19 (2013-18794)

Security update for PMASA-2013-8, PMASA-2013-9, PMASA-2013-11, PMASA-2013-12 PMASA-2013-14 and PMASA-2013-15 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as...

[SECURITY] Fedora 20 Update: phpMyAdmin-3.5.8.2-1.fc20

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 19 Update: phpMyAdmin-3.5.8.2-1.fc19

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

[SECURITY] Fedora 18 Update: phpMyAdmin-3.5.8.2-1.fc18

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface managing databases, tables, fields, relations, index es, users, permissions, while you still have the ability to directly...

GLSA-201311-02 : phpMyAdmin: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201311-02 phpMyAdmin: Multiple vulnerabilities Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers referenced below for details. Impact : A remote authenticated attacker could exploit the...

phpMyAdmin: Multiple vulnerabilities

Background phpMyAdmin is a web-based management tool for MySQL databases. Description Multiple vulnerabilities have been discovered in phpMyAdmin. Please review the CVE identifiers referenced below for details. Impact A remote authenticated attacker could exploit these vulnerabilities to execute...

PhpMyAdmin Sweky Remote Code Injection Exploit (CVE-2011-2506)

A Code Injection vulnerability has been reported in PhpMyAdmin...

PhpMyAdmin Remote Variable Manipulation (CVE-2011-2505)

A remote variable manipulation vulnerability has been reported in PhpMyAdmin...

金蝶网多处安全漏洞大礼包(可获服务器权限)

简要描述： 对金蝶的一次失败的渗透，太晚了，睡觉了不玩了。 详细说明： 首先是几个小问题： 分站的列目录，能列出一些敏感数据。 http://kdeas.kingdee.com/easWebClient/deploy/client/ctrlhome/client/KDNoteConfig.xml http://kdeas.kingdee.com/easWebClient/deploy 小问题2：XSS漏洞。 金蝶官网的金蝶通行证，在对用户注册后填写的地址没有做过滤处理，导致XSS，可以X到cookies。 小问题3：金蝶用户中心密码找回缺陷。6位纯数字，没有做次数限制。...