Lucene search
RootSSV:26100HistoryDec 24, 2011 - 12:00 a.m.
phpMyAdmin '$host'变量HTML注入漏洞
2011-12-2400:00:00
Root
www.seebug.org
34
0.003 Low
EPSS
Percentile
63.6%
Bugtraq ID: 51166
CVE ID:CVE-2011-4782
phpMyAdmin是一款基于PHP的MySQL管理程序。
部分输入到setup接口的特制值可触发XSS,而且如果配置目录存在并科协,XSS负载可保存到此目录。
0
phpMyAdmin phpMyAdmin 3.4.8
phpMyAdmin phpMyAdmin 3.4.6
phpMyAdmin phpMyAdmin 3.4.5
phpMyAdmin phpMyAdmin 3.4.3
phpMyAdmin phpMyAdmin 3.4.5
phpMyAdmin phpMyAdmin 3.4.4
phpMyAdmin phpMyAdmin 3.4.3.2
phpMyAdmin phpMyAdmin 3.4.3.1
phpMyAdmin phpMyAdmin 3.4.1
phpMyAdmin phpMyAdmin 3.4.0-beta1
phpMyAdmin phpMyAdmin 3.4.0
厂商解决方案
phpMyAdmin 3.4.9已经修复此漏洞,建议用户下载使用:
http://www.phpmyadmin.net/
Related
cve
cve
CVE-2011-4782
2011-12-22 20:55:00
prion
prion
Cross site scripting
2011-12-22 20:55:00
securityvulns
securityvulns
TWSL2011-019: Cross-Site Scripting Vulnerability in phpMyAdmin
2011-12-26 00:00:00
debiancve
debiancve
CVE-2011-4782
2011-12-22 20:55:00
phpmyadmin
phpmyadmin
XSS in setup.
2011-12-21 00:00:00
packetstorm
packetstorm
phpMyAdmin 3.4.8 Cross Site Scripting
2011-12-22 00:00:00
ubuntucve
ubuntucve
CVE-2011-4782
2011-12-22 00:00:00
nessus
nessus
Fedora 16 : phpMyAdmin-3.4.9-1.fc16 (2011-17369)
2012-01-03 00:00:00
phpMyAdmin 3.4.x < 3.4.9 XSS (PMASA-2011-19 - PMASA-2011-20)
2011-12-22 00:00:00
FreeBSD : phpMyAdmin -- Multiple XSS (8c83145d-2c95-11e1-89b4-001ec9578670)
2011-12-23 00:00:00
openvas
openvas
Fedora Update for phpMyAdmin FEDORA-2011-17370
2012-01-09 00:00:00
FreeBSD Ports: phpMyAdmin
2012-02-13 00:00:00
Fedora Update for phpMyAdmin FEDORA-2011-17370
2012-01-09 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: phpMyAdmin-3.4.9-1.fc15
2012-01-01 21:21:23
[SECURITY] Fedora 16 Update: phpMyAdmin-3.4.9-1.fc16
2012-01-01 21:24:07
freebsd
freebsd
phpMyAdmin -- Multiple XSS
2011-12-16 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2012-01-04 00:00:00