Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

phpmyadmin phpmyadmin 2.8.0.1 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2006-2417
Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.x prior to 2.8.0.4 allows remote malicious users to inject arbitrary web script or HTML via the theme parameter in unknown scripts. NOTE: the lang parameter is already covered by CVE-2006-2031.
Phpmyadmin Phpmyadmin 2.8.0.1Phpmyadmin Phpmyadmin 2.8.0.2Phpmyadmin Phpmyadmin 2.8.0.3
NA
CVE-2006-1258
Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.1 allows remote malicious users to inject arbitrary web script or HTML via the set_theme parameter.
Phpmyadmin Phpmyadmin 2.8.0.1
NA
CVE-2006-5116
Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyAdmin prior to 2.9.1-rc1 allow remote malicious users to perform unauthorized actions as another user by (1) directly setting a token in the URL though dynamic variable evaluation and (2) unsetting arbitrary varia...
Phpmyadmin Phpmyadmin 2.8.0.1Phpmyadmin Phpmyadmin 2.9.0 DevPhpmyadmin Phpmyadmin 2.8.0.2Phpmyadmin Phpmyadmin 2.8.0.3Phpmyadmin Phpmyadmin 2.8.1Phpmyadmin Phpmyadmin 2.8.1 DevPhpmyadmin Phpmyadmin 2.8.3Phpmyadmin Phpmyadmin 2.8.4
NA
CVE-2006-5117
phpMyAdmin prior to 2.9.1-rc1 has a libraries directory under the web document root with insufficient access control, which allows remote malicious users to obtain sensitive information via direct requests for certain files.
Phpmyadmin Phpmyadmin 2.8.0.1Phpmyadmin Phpmyadmin 2.8.0.2Phpmyadmin Phpmyadmin 2.8.0.3Phpmyadmin Phpmyadmin 2.8.1 DevPhpmyadmin Phpmyadmin 2.8.4Phpmyadmin Phpmyadmin 2.9.0 DevPhpmyadmin Phpmyadmin 2.8.1Phpmyadmin Phpmyadmin 2.8.3
NA
CVE-2007-1395
Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 up to and including 2.9.2 allows remote malicious users to conduct cross-site scripting (XSS) attacks by injecting arbitrary JavaScript or HTML in a (1) db or (2) table parameter value followed by an uppercase &l...
Phpmyadmin Phpmyadmin 2.8.0Phpmyadmin Phpmyadmin 2.8.4Phpmyadmin Phpmyadmin 2.9Phpmyadmin Phpmyadmin 2.9.0 Rc1Phpmyadmin Phpmyadmin 2.9.1Phpmyadmin Phpmyadmin 2.8.2Phpmyadmin Phpmyadmin 2.8.3Phpmyadmin Phpmyadmin 2.9.0 Beta1Phpmyadmin Phpmyadmin 2.9.0 DevPhpmyadmin Phpmyadmin 2.8.0.3Phpmyadmin Phpmyadmin 2.8.1Phpmyadmin Phpmyadmin 2.8.1 DevPhpmyadmin Phpmyadmin 2.9.0.2Phpmyadmin Phpmyadmin 2.9.0.3Phpmyadmin Phpmyadmin 2.9.1 Rc2Phpmyadmin Phpmyadmin 2.9.2Phpmyadmin Phpmyadmin 2.8.0.1Phpmyadmin Phpmyadmin 2.8.0.2Phpmyadmin Phpmyadmin 2.9.0Phpmyadmin Phpmyadmin 2.9.0.1Phpmyadmin Phpmyadmin 2.9.1.1Phpmyadmin Phpmyadmin 2.9.1 Rc1
NA
CVE-2007-6100
Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin prior to 2.11.2.2, when logins are authenticated with the cookie auth_type, allows remote malicious users to inject arbitrary web script or HTML via the convcharset parameter to index.php...
Phpmyadmin PhpmyadminPhpmyadmin Phpmyadmin 2.11.2.0Phpmyadmin Phpmyadmin 2.11.2.2Phpmyadmin Phpmyadmin 2.11.3.0Phpmyadmin Phpmyadmin 2.11.4.0Phpmyadmin Phpmyadmin 2.11.1.2Phpmyadmin Phpmyadmin 2.11.1.1Phpmyadmin Phpmyadmin 2.11.5.2Phpmyadmin Phpmyadmin 2.11.6.0Phpmyadmin Phpmyadmin 2.11.9.3Phpmyadmin Phpmyadmin 2.11.9.4Phpmyadmin Phpmyadmin 2.10.3Phpmyadmin Phpmyadmin 2.10.1.0Phpmyadmin Phpmyadmin 2.9.0.1Phpmyadmin Phpmyadmin 2.9.0.2Phpmyadmin Phpmyadmin 2.8.0.2Phpmyadmin Phpmyadmin 2.8.0.3Phpmyadmin Phpmyadmin 2.6.2Phpmyadmin Phpmyadmin 2.11.10.1Phpmyadmin Phpmyadmin 2.11.10.0Phpmyadmin Phpmyadmin 2.11.5.0Phpmyadmin Phpmyadmin 2.11.5.1
NA
CVE-2008-3197
Cross-site request forgery (CSRF) vulnerability in phpMyAdmin prior to 2.11.7.1 allows remote malicious users to perform unauthorized actions via a link or IMG tag to (1) the db parameter in the "Creating a Database" functionality (db_create.php), and (2) the convcharse...
Phpmyadmin Phpmyadmin 2.0.4Phpmyadmin Phpmyadmin 2.0.5Phpmyadmin Phpmyadmin 2.10.0.2Phpmyadmin Phpmyadmin 2.10.01Phpmyadmin Phpmyadmin 2.10.3rc1Phpmyadmin Phpmyadmin 2.11.0Phpmyadmin Phpmyadmin 2.11.1.2Phpmyadmin Phpmyadmin 2.11.1rc1Phpmyadmin Phpmyadmin 2.11.4Phpmyadmin Phpmyadmin 2.11.4.0Phpmyadmin Phpmyadmin 2.11.6Phpmyadmin Phpmyadmin 2.11.6rc1Phpmyadmin Phpmyadmin 2.2.0 Rc2Phpmyadmin Phpmyadmin 2.2.0 Rc3Phpmyadmin Phpmyadmin 2.2 Pre2Phpmyadmin Phpmyadmin 2.2 Rc1Phpmyadmin Phpmyadmin 2.5.1Phpmyadmin Phpmyadmin 2.5.2Phpmyadmin Phpmyadmin 2.5.5 Rc2Phpmyadmin Phpmyadmin 2.5.6 Rc1Phpmyadmin Phpmyadmin 2.5.6 Rc2Phpmyadmin Phpmyadmin 2.6.1 Pl1
NA
CVE-2008-4326
The PMA_escapeJsString function in libraries/js_escape.lib.php in phpMyAdmin prior to 2.11.9.2, when Internet Explorer is used, allows remote malicious users to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via a NUL byte inside a "</scri...
Phpmyadmin Phpmyadmin 2.0.3Phpmyadmin Phpmyadmin 2.0.0Phpmyadmin Phpmyadmin 2.10.0Phpmyadmin Phpmyadmin 2.10.1Phpmyadmin Phpmyadmin 2.10.1.0Phpmyadmin Phpmyadmin 2.11.1.0Phpmyadmin Phpmyadmin 2.11.0beta1Phpmyadmin Phpmyadmin 2.11.0.0Phpmyadmin Phpmyadmin 2.11.1rc1Phpmyadmin Phpmyadmin 2.11.3rc1Phpmyadmin Phpmyadmin 2.11.5rc1Phpmyadmin Phpmyadmin 2.11.4rc1Phpmyadmin Phpmyadmin 2.11.8Phpmyadmin PhpmyadminPhpmyadmin Phpmyadmin 2.2 Rc1Phpmyadmin Phpmyadmin 2.2 Pre2Phpmyadmin Phpmyadmin 2.2 Pre1Phpmyadmin Phpmyadmin 2.2.7 Pl1Phpmyadmin Phpmyadmin 2.5.1Phpmyadmin Phpmyadmin 2.5.2Phpmyadmin Phpmyadmin 2.5.5 Rc2Phpmyadmin Phpmyadmin 2.5.5 Rc1
NA
CVE-2009-2284
Cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 3.2.0.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted SQL bookmark.
Phpmyadmin Phpmyadmin 2.0.2Phpmyadmin Phpmyadmin 2.0.5Phpmyadmin Phpmyadmin 2.10.2Phpmyadmin Phpmyadmin 2.10.0.0Phpmyadmin Phpmyadmin 2.10.1.0Phpmyadmin Phpmyadmin 2.10.2.0Phpmyadmin Phpmyadmin 2.10.3.0Phpmyadmin Phpmyadmin 2.11.1.0Phpmyadmin Phpmyadmin 2.11.1Phpmyadmin Phpmyadmin 2.11.5.0Phpmyadmin Phpmyadmin 2.11.3.0Phpmyadmin Phpmyadmin 2.11.3Phpmyadmin Phpmyadmin 2.11.7.0Phpmyadmin Phpmyadmin 2.11.6rc1Phpmyadmin Phpmyadmin 2.11.6Phpmyadmin Phpmyadmin 2.11.9.1Phpmyadmin Phpmyadmin 2.11.9.2Phpmyadmin Phpmyadmin 2.2.0 Pre1Phpmyadmin Phpmyadmin 2.2.2Phpmyadmin Phpmyadmin 2.2.4Phpmyadmin Phpmyadmin 2.2.6Phpmyadmin Phpmyadmin 2.2 Rc3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgeryCVE-2024-34351CVE-2024-1076CVE-2024-25522CVE-2024-34547CVE-2024-4644unauthorizedremoteCVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook