Phpmyadmin

Phpmyadmin

272 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-2206

  • EPSS 0.92%
  • Published 09.03.2015 17:59:10
  • Last modified 12.04.2025 10:46:40

libraries/select_lang.lib.php in phpMyAdmin 4.0.x before 4.0.10.9, 4.2.x before 4.2.13.2, and 4.3.x before 4.3.11.1 includes invalid language values in unknown-language error responses that contain a CSRF token and may be sent with HTTP compression, ...

3.5

CVE-2011-3592

  • EPSS 0.18%
  • Published 26.12.2014 02:59:06
  • Last modified 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in the PMA_unInlineEditRow function in js/sql.js in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a (1) database name, (2) table name, or ...

3.5

CVE-2011-3591

  • EPSS 0.18%
  • Published 26.12.2014 02:59:05
  • Last modified 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted row that triggers an improperly constructed confirmation message after inline-e...

4.3

CVE-2014-9219

Exploit
  • EPSS 0.29%
  • Published 08.12.2014 11:59:13
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the redirection feature in url.php in phpMyAdmin 4.2.x before 4.2.13.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter.

5

CVE-2014-9218

Exploit
  • EPSS 16.9%
  • Published 08.12.2014 11:59:11
  • Last modified 12.04.2025 10:46:40

libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.7, 4.1.x before 4.1.14.8, and 4.2.x before 4.2.13.1 allows remote attackers to cause a denial of service (resource consumption) via a long password.

4

CVE-2014-8961

  • EPSS 1.99%
  • Published 30.11.2014 11:59:03
  • Last modified 12.04.2025 10:46:40

Directory traversal vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to obtain potentially sensitive information about a file'...

3.5

CVE-2014-8960

Exploit
  • EPSS 0.29%
  • Published 30.11.2014 11:59:02
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to inject arbitrary web script or HTML via a craft...

6.5

CVE-2014-8959

Exploit
  • EPSS 3.72%
  • Published 30.11.2014 11:59:01
  • Last modified 12.04.2025 10:46:40

Directory traversal vulnerability in libraries/gis/GIS_Factory.class.php in the GIS editor in phpMyAdmin 4.0.x before 4.0.10.6, 4.1.x before 4.1.14.7, and 4.2.x before 4.2.12 allows remote authenticated users to include and execute arbitrary local fi...

4.3

CVE-2014-8958

  • EPSS 0.6%
  • Published 30.11.2014 11:59:00
  • Last modified 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.6, 4.1.x before 4.1.14.7, and 4.2.x before 4.2.12 allow remote authenticated users to inject arbitrary web script or HTML via a crafted (1) database, (2) table, or ...

4.3

CVE-2014-6300

  • EPSS 0.27%
  • Published 08.11.2014 11:55:02
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the micro history implementation in phpMyAdmin 4.0.x before 4.0.10.3, 4.1.x before 4.1.14.4, and 4.2.x before 4.2.8.1 allows remote attackers to inject arbitrary web script or HTML, and consequently conduct...