Phpmyadmin

Phpmyadmin

272 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-2206

  • EPSS 0.92%
  • Veröffentlicht 09.03.2015 17:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libraries/select_lang.lib.php in phpMyAdmin 4.0.x before 4.0.10.9, 4.2.x before 4.2.13.2, and 4.3.x before 4.3.11.1 includes invalid language values in unknown-language error responses that contain a CSRF token and may be sent with HTTP compression, ...

3.5

CVE-2011-3592

  • EPSS 0.18%
  • Veröffentlicht 26.12.2014 02:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in the PMA_unInlineEditRow function in js/sql.js in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a (1) database name, (2) table name, or ...

3.5

CVE-2011-3591

  • EPSS 0.18%
  • Veröffentlicht 26.12.2014 02:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted row that triggers an improperly constructed confirmation message after inline-e...

4.3

CVE-2014-9219

Exploit
  • EPSS 0.29%
  • Veröffentlicht 08.12.2014 11:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the redirection feature in url.php in phpMyAdmin 4.2.x before 4.2.13.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter.

5

CVE-2014-9218

Exploit
  • EPSS 16.9%
  • Veröffentlicht 08.12.2014 11:59:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.7, 4.1.x before 4.1.14.8, and 4.2.x before 4.2.13.1 allows remote attackers to cause a denial of service (resource consumption) via a long password.

4

CVE-2014-8961

  • EPSS 1.99%
  • Veröffentlicht 30.11.2014 11:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Directory traversal vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to obtain potentially sensitive information about a file'...

3.5

CVE-2014-8960

Exploit
  • EPSS 0.29%
  • Veröffentlicht 30.11.2014 11:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to inject arbitrary web script or HTML via a craft...

6.5

CVE-2014-8959

Exploit
  • EPSS 3.72%
  • Veröffentlicht 30.11.2014 11:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Directory traversal vulnerability in libraries/gis/GIS_Factory.class.php in the GIS editor in phpMyAdmin 4.0.x before 4.0.10.6, 4.1.x before 4.1.14.7, and 4.2.x before 4.2.12 allows remote authenticated users to include and execute arbitrary local fi...

4.3

CVE-2014-8958

  • EPSS 0.6%
  • Veröffentlicht 30.11.2014 11:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.6, 4.1.x before 4.1.14.7, and 4.2.x before 4.2.12 allow remote authenticated users to inject arbitrary web script or HTML via a crafted (1) database, (2) table, or ...

4.3

CVE-2014-6300

  • EPSS 0.27%
  • Veröffentlicht 08.11.2014 11:55:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the micro history implementation in phpMyAdmin 4.0.x before 4.0.10.3, 4.1.x before 4.1.14.4, and 4.2.x before 4.2.8.1 allows remote attackers to inject arbitrary web script or HTML, and consequently conduct...