5
CVE-2015-7873
- EPSS 2.62%
- Veröffentlicht 28.10.2015 10:59:19
- Zuletzt bearbeitet 06.05.2026 22:30:45
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Phpmyadmin ≫ Phpmyadmin Version4.4.0
Phpmyadmin ≫ Phpmyadmin Version4.4.1
Phpmyadmin ≫ Phpmyadmin Version4.4.1.1
Phpmyadmin ≫ Phpmyadmin Version4.4.2
Phpmyadmin ≫ Phpmyadmin Version4.4.3
Phpmyadmin ≫ Phpmyadmin Version4.4.4
Phpmyadmin ≫ Phpmyadmin Version4.4.5
Phpmyadmin ≫ Phpmyadmin Version4.4.6
Phpmyadmin ≫ Phpmyadmin Version4.4.6.1
Phpmyadmin ≫ Phpmyadmin Version4.4.7
Phpmyadmin ≫ Phpmyadmin Version4.4.8
Phpmyadmin ≫ Phpmyadmin Version4.4.9
Phpmyadmin ≫ Phpmyadmin Version4.4.10
Phpmyadmin ≫ Phpmyadmin Version4.4.11
Phpmyadmin ≫ Phpmyadmin Version4.4.12
Phpmyadmin ≫ Phpmyadmin Version4.4.13
Phpmyadmin ≫ Phpmyadmin Version4.4.13.1
Phpmyadmin ≫ Phpmyadmin Version4.4.14
Phpmyadmin ≫ Phpmyadmin Version4.4.14.1
Phpmyadmin ≫ Phpmyadmin Version4.4.15
Phpmyadmin ≫ Phpmyadmin Version4.5.0
Phpmyadmin ≫ Phpmyadmin Version4.5.0.1
Phpmyadmin ≫ Phpmyadmin Version4.5.0.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.62% | 0.835 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://www.debian.org/security/2015/dsa-3382
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171311.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171326.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-October/169987.html
http://www.securityfocus.com/bid/77299
http://www.securitytracker.com/id/1034013
https://github.com/phpmyadmin/phpmyadmin/commit/cd097656758f981f80fb9029c7d6b4294582b706
https://www.phpmyadmin.net/security/PMASA-2015-5/