Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

phpmyadmin phpmyadmin 2.7.0 pl2 vulnerabilities and exploits

(subscribe to this query)
NA

CVE-2006-6373

PhpMyAdmin 2.7.0-pl2 allows remote malicious users to obtain sensitive information via a direct request for libraries/common.lib.php, which reveals the path in an error message.
Phpmyadmin Phpmyadmin 2.7.0 Pl2
NA

CVE-2006-6374

Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 allow remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a phpMyAdmin cookie in (1) css/phpmyadmin.css.php, (2) db_create.php, (3) index.php, (4)...
Phpmyadmin Phpmyadmin 2.7.0 Pl2
NA

CVE-2006-1678

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.8.0.3 allow remote malicious users to inject arbitrary web script or HTML via unknown vectors in unspecified scripts in the themes directory.
Phpmyadmin Phpmyadmin 2.1.1Phpmyadmin Phpmyadmin 2.7.0Phpmyadmin Phpmyadmin 2.7.0 Pl1Phpmyadmin Phpmyadmin 2.6.4 Rc1Phpmyadmin Phpmyadmin 2.2.4Phpmyadmin Phpmyadmin 2.1.2Phpmyadmin Phpmyadmin 2.2.0 Rc2Phpmyadmin Phpmyadmin 2.5.0Phpmyadmin Phpmyadmin 2.2.0 Rc1Phpmyadmin Phpmyadmin 2.6.4 Pl1Phpmyadmin Phpmyadmin 2.0.4Phpmyadmin Phpmyadmin 2.6.1Phpmyadmin Phpmyadmin 2.6.1 Pl3Phpmyadmin Phpmyadmin 2.3.1Phpmyadmin Phpmyadmin 2.7.0 Pl2Phpmyadmin Phpmyadmin 2.0.2Phpmyadmin Phpmyadmin 2.5.5 Rc1Phpmyadmin Phpmyadmin 2.6.0 Pl3Phpmyadmin Phpmyadmin 2.5.7 Pl1Phpmyadmin Phpmyadmin 2.4.0Phpmyadmin Phpmyadmin 2.5.5Phpmyadmin Phpmyadmin 2.5.7
NA

CVE-2008-4326

The PMA_escapeJsString function in libraries/js_escape.lib.php in phpMyAdmin prior to 2.11.9.2, when Internet Explorer is used, allows remote malicious users to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via a NUL byte inside a "</scri...
Phpmyadmin PhpmyadminPhpmyadmin Phpmyadmin 2.0Phpmyadmin Phpmyadmin 2.0.0Phpmyadmin Phpmyadmin 2.0.1Phpmyadmin Phpmyadmin 2.0.2Phpmyadmin Phpmyadmin 2.0.3Phpmyadmin Phpmyadmin 2.0.4Phpmyadmin Phpmyadmin 2.0.5Phpmyadmin Phpmyadmin 2.1Phpmyadmin Phpmyadmin 2.1.0Phpmyadmin Phpmyadmin 2.1.1Phpmyadmin Phpmyadmin 2.1.2Phpmyadmin Phpmyadmin 2.2Phpmyadmin Phpmyadmin 2.2.0Phpmyadmin Phpmyadmin 2.2.0 Pre1Phpmyadmin Phpmyadmin 2.2.0 Pre2Phpmyadmin Phpmyadmin 2.2.0 Rc1Phpmyadmin Phpmyadmin 2.2.0 Rc2Phpmyadmin Phpmyadmin 2.2.0 Rc3Phpmyadmin Phpmyadmin 2.2.2Phpmyadmin Phpmyadmin 2.2.3Phpmyadmin Phpmyadmin 2.2.4
NA

CVE-2008-3197

Cross-site request forgery (CSRF) vulnerability in phpMyAdmin prior to 2.11.7.1 allows remote malicious users to perform unauthorized actions via a link or IMG tag to (1) the db parameter in the "Creating a Database" functionality (db_create.php), and (2) the convcharse...
Phpmyadmin Phpmyadmin 2.5.2 Pl1Phpmyadmin Phpmyadmin 2.10.3rc1Phpmyadmin Phpmyadmin 2.11.4Phpmyadmin Phpmyadmin 2.1.1Phpmyadmin Phpmyadmin 2.11.0rc1Phpmyadmin Phpmyadmin 2.7.0Phpmyadmin Phpmyadmin 2.7.0 Pl1Phpmyadmin Phpmyadmin 2.11.1.2Phpmyadmin Phpmyadmin 2.8.1 DevPhpmyadmin Phpmyadmin 2.6.4 Rc1Phpmyadmin Phpmyadmin 2.2.4Phpmyadmin Phpmyadmin 2.1.2Phpmyadmin Phpmyadmin 2.2.0 Rc2Phpmyadmin Phpmyadmin 2.2 Pre1Phpmyadmin Phpmyadmin 2.8.3Phpmyadmin Phpmyadmin 2.11.5.1Phpmyadmin Phpmyadmin 2.5.0Phpmyadmin Phpmyadmin 2.11.3rc1Phpmyadmin Phpmyadmin 2.9.1.1Phpmyadmin Phpmyadmin 2.11.1Phpmyadmin Phpmyadmin 2.9.1 Rc2Phpmyadmin Phpmyadmin 2.2.0 Rc1
NA

CVE-2009-2284

Cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 3.2.0.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted SQL bookmark.
Phpmyadmin Phpmyadmin 2.5.2 Pl1Phpmyadmin Phpmyadmin 2.10.3rc1Phpmyadmin Phpmyadmin 3.0.1.1Phpmyadmin Phpmyadmin 2.11.4Phpmyadmin Phpmyadmin 2.1.1Phpmyadmin Phpmyadmin 2.11.0rc1Phpmyadmin Phpmyadmin 3.2.0-beta1Phpmyadmin Phpmyadmin 2.7.0Phpmyadmin Phpmyadmin 2.7.0 Pl1Phpmyadmin Phpmyadmin 2.11.1.2Phpmyadmin Phpmyadmin 2.8.1 DevPhpmyadmin Phpmyadmin 2.6.4 Rc1Phpmyadmin Phpmyadmin 2.2.4Phpmyadmin Phpmyadmin 2.1.2Phpmyadmin Phpmyadmin 2.2.0 Rc2Phpmyadmin Phpmyadmin 2.2 Pre1Phpmyadmin Phpmyadmin 3.1.4Phpmyadmin Phpmyadmin 3.1.3Phpmyadmin Phpmyadmin 2.8.3Phpmyadmin PhpmyadminPhpmyadmin Phpmyadmin 2.11.5.1Phpmyadmin Phpmyadmin 2.5.0
NA

CVE-2005-3665

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.7.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.
Phpmyadmin Phpmyadmin 2.1.1Phpmyadmin Phpmyadmin 2.6.4 Rc1Phpmyadmin Phpmyadmin 2.2.4Phpmyadmin Phpmyadmin 2.1.2Phpmyadmin Phpmyadmin 2.2 Pre1Phpmyadmin Phpmyadmin 2.5.0Phpmyadmin Phpmyadmin 2.2Phpmyadmin Phpmyadmin 2.6.4 Pl1Phpmyadmin Phpmyadmin 2.0.4Phpmyadmin Phpmyadmin 2.6.1Phpmyadmin Phpmyadmin 2.6.1 Pl3Phpmyadmin Phpmyadmin 2.3.1Phpmyadmin Phpmyadmin 2.0.2Phpmyadmin Phpmyadmin 2.5.5 Rc1Phpmyadmin Phpmyadmin 2.6.0 Pl3Phpmyadmin Phpmyadmin 2.5.7 Pl1Phpmyadmin Phpmyadmin 2.4.0Phpmyadmin Phpmyadmin 2.5.5Phpmyadmin Phpmyadmin 2.5.7Phpmyadmin Phpmyadmin 2.6.2 Rc1Phpmyadmin Phpmyadmin 2.5.6 Rc1Phpmyadmin Phpmyadmin 2.0.3
NA

CVE-2006-3388

Cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 2.8.2 allows remote malicious users to inject arbitrary web script or HTML via the table parameter.
Phpmyadmin Phpmyadmin 2.1.1Phpmyadmin Phpmyadmin 2.6.4 Rc1Phpmyadmin Phpmyadmin 2.2.4Phpmyadmin Phpmyadmin 2.1.2Phpmyadmin Phpmyadmin 2.2 Pre1Phpmyadmin Phpmyadmin 2.8.3Phpmyadmin Phpmyadmin 2.5.0Phpmyadmin Phpmyadmin 2.2Phpmyadmin Phpmyadmin 2.7 Pl1Phpmyadmin Phpmyadmin 2.6.4 Pl1Phpmyadmin Phpmyadmin 2.0.4Phpmyadmin Phpmyadmin 2.6.1Phpmyadmin Phpmyadmin 2.6.1 Pl3Phpmyadmin Phpmyadmin 2.3.1Phpmyadmin Phpmyadmin 2.0.2Phpmyadmin Phpmyadmin 2.5.5 Rc1Phpmyadmin Phpmyadmin 2.6.0 Pl3Phpmyadmin Phpmyadmin 2.5.7 Pl1Phpmyadmin Phpmyadmin 2.4.0Phpmyadmin Phpmyadmin 2.5.5Phpmyadmin Phpmyadmin 2.5.7Phpmyadmin Phpmyadmin 2.6.2 Rc1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692malicious code‎XML injectionCVE-2024-28020CVE-2024-35252CVE-2024-5833CVE-2024-30066injectionCVE-2024-23282
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook