phpMyAdmin < 2.6.1-rc1 Multiple Remote Vulnerabilities

According to its banner, the remote version of phpMyAdmin is vulnerable to one or both of the following flaws : - An attacker may be able to exploit this software to execute arbitrary commands on the remote host on a server which does not run PHP in safe mode. - An attacker may be able to read...

GLSA-200411-36 : phpMyAdmin: Multiple XSS vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200411-36 phpMyAdmin: Multiple XSS vulnerabilities Cedric Cochin has discovered multiple cross-site scripting vulnerabilities in phpMyAdmin. These vulnerabilities can be exploited through the PmaAbsoluteUri parameter, the zerorows...

phpMyAdmin: Multiple XSS vulnerabilities

Background phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL databases from a web-browser. Description Cedric Cochin has discovered multiple cross-site scripting vulnerabilities in phpMyAdmin. These vulnerabilities can be exploited through the PmaAbsoluteUri...

CVE-2004-1055

CVE-2004-1055 covers multiple XSS vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier. The flaws allow remote attackers to inject arbitrary script/html via (1) PmaAbsoluteUri, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) an error message generated by the internal php...

CVE-2004-1055

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PmaAbsoluteUri parameter, 2 the zerorows parameter in readdump.php, 3 the confirm form, or 4 an error message generated by the internal...

CVE-2004-1055

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the PmaAbsoluteUri parameter, 2 the zerorows parameter in readdump.php, 3 the confirm form, or 4 an error message generated by the internal...

phpMyAdmin < 2.6.0-p12 Multiple RCE

Binary data 2421.prm...

phpMyAdmin < 2.2.1 'sql.php' Arbitrary File Access

Binary data 2418.prm...

phpMyAdmin Unsupported Version Detection

Binary data 2416.prm...

phpMyAdmin < 2.5.6-rc1 Arbitrary File Access

Binary data 2419.prm...

phpMyAdmin < 2.5.2 Multiple Vulnerabilities

Binary data 2420.prm...

phpMyAdmin < 2.6.0-p13 XSS

Binary data 2417.prm...

phpMyAdmin < 2.6.0-pl3 Multiple XSS

The version of phpMyAdmin installed on the remote host is vulnerable to cross-site scripting attacks through various parameters and scripts. With a specially crafted URL, an attacker can cause arbitrary code execution resulting in a loss of integrity. %NASLMINLEVEL 70300 C Tenable Network Securit...

[SA13241] phpMyAdmin Cross-Site Scripting Vulnerabilities

TITLE: phpMyAdmin Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA13241 VERIFY ADVISORY: http://secunia.com/advisories/13241/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: phpMyAdmin 2.x http://secunia.com/product/1720/ DESCRIPTION: Cedric Cochin ha...

phpMyAdmin -- cross-site scripting vulnerabilities

Multiple cross-site scripting vulnerabilities, caused by improper input parameter sanitizing, were detected in phpMyAdmin, which may enable an attacker to do cross-site scripting attacks...

Multiple XSS vulnerability were found in phpMyAdmin, that may allow an attacker to conduct Cross-site scripting (XSS) attacks.

PMASA-2004-3 Announcement-ID: PMASA-2004-3 Date: 2004-11-18 Summary Multiple XSS vulnerability were found in phpMyAdmin, that may allow an attacker to conduct Cross-site scripting XSS attacks. Description We received a security advisory from Cedric Cochin netvigilance.com about those...

FreeBSD : phpmyadmin -- remote command execution vulnerability (143)

The following package needs to be updated: phpMyAdmin %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgfc07c9ca22ce11d9814e0001020eed82.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

GLSA-200410-14 : phpMyAdmin: Vulnerability in MIME-based transformation system

The remote host is affected by the vulnerability described in GLSA-200410-14 phpMyAdmin: Vulnerability in MIME-based transformation system A defect was found in phpMyAdmin's MIME-based transformation system, when used with 'external' transformations. Impact : A remote attacker could exploit this...

phpMyAdmin: Vulnerability in MIME-based transformation system

Background phpMyAdmin is a popular web-based MySQL administration tool written in PHP. It allows users to browse and administer a MySQL database from a web-browser. Transformations are a phpMyAdmin feature allowing plug-ins to rewrite the contents of any column seen in phpMyAdmin's Browsing mode,...

phpMyAdmin < 2.6.0-pl2 Unspecified Arbitrary Command Execution

According to its banner, the remote version of phpMyAdmin is between 2.5.0 and 2.6.0-pl1. Such versions may allow an authenticated, remote attacker to run arbitrary commands subject to the privileges of the web server due to the way external MIME-based transformations are handled. Note that...