Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:11747
HistoryJul 03, 2009 - 12:00 a.m.

phpMyAdmin SQL书签HTML注入漏洞

2009-07-0300:00:00
Root
www.seebug.org
15

0.003 Low

EPSS

Percentile

64.6%

JSON

BUGTRAQ ID: 35543
CVE(CAN) ID: CVE-2009-2284

phpMyAdmin是用PHP编写的工具,用于通过WEB管理MySQL。

phpMyAdmin没有正确地过滤某些对SQL书签所传送的输入,远程攻击者可以通过提交恶意请求注入并执行任意HTML和脚本代码。

phpMyAdmin 3.x
厂商补丁:

phpMyAdmin

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.phpmyadmin.net/

Related

freebsd 1
nessus 4
openvas 11
debiancve 1
prion 1
securityvulns 2
ubuntucve 1
cve 1
phpmyadmin 1
redhatcve 1
freebsd
freebsd
phpmyadmin -- XSS vulnerability
2009-06-30 00:00:00
nessus
nessus
FreeBSD : phpmyadmin -- XSS vulnerability (ba73f494-65a8-11de-aef5-001c2514716c)
2009-07-01 00:00:00
Fedora 11 : phpMyAdmin-3.2.0.1-1.fc11 (2009-7329)
2009-07-06 00:00:00
Fedora 10 : phpMyAdmin-3.2.0.1-1.fc10 (2009-7340)
2009-07-06 00:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-7340 (phpMyAdmin)
2009-07-06 00:00:00
Fedora Core 9 FEDORA-2009-7337 (phpMyAdmin)
2009-07-06 00:00:00
Fedora Core 11 FEDORA-2009-7329 (phpMyAdmin)
2009-07-06 00:00:00
debiancve
debiancve
CVE-2009-2284
2009-07-01 13:00:00
prion
prion
Cross site scripting
2009-07-01 13:00:00
securityvulns
securityvulns
[ MDVSA-2009:192 ] phpmyadmin
2009-08-09 00:00:00
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2009-08-09 00:00:00
ubuntucve
ubuntucve
CVE-2009-2284
2009-07-01 00:00:00
cve
cve
CVE-2009-2284
2009-07-01 13:00:00
phpmyadmin
phpmyadmin
XSS vulnerability
2009-06-30 00:00:00
redhatcve
redhatcve
CVE-2009-2284
2019-10-04 21:45:14

0.003 Low

EPSS

Percentile

64.6%

JSON
Related for SSV:11747
freebsd1nessus4openvas11debiancve1prion1securityvulns2ubuntucve1cve1phpmyadmin1redhatcve1