This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:phpmyadmin:phpmyadmin:2.0.4
Detail
VendorPhpmyadminFirst view 2001-07-31
ProductPhpmyadminLast view 2009-07-01
Version2.0.4TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:phpmyadmin:phpmyadmin

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.3 2009-07-01 CVE-2009-2284 Network Medium None Requ...
4.3 2008-09-30 CVE-2008-4326 Network Medium None Requ...
8.5 2008-09-18 CVE-2008-4096 Network Medium Requires ...
2.6 2008-08-04 CVE-2008-3457 Network High None Requ...
6.4 2008-08-04 CVE-2008-3456 Network Low None Requ...
Hide | Show 10 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.5 2008-07-16 CVE-2008-3197 Network Medium Requires ...
2.6 2007-11-23 CVE-2007-6100 Network High None Requ...
5.8 2006-07-06 CVE-2006-3388 Network Medium None Requ...
4.3 2006-04-10 CVE-2006-1678 Network Medium None Requ...
4.3 2005-12-08 CVE-2005-3665 Network Medium None Requ...
4.3 2005-09-08 CVE-2005-2869 Network Medium None Requ...
4.3 2005-05-02 CVE-2005-0992 Network Medium None Requ...
5 2005-05-02 CVE-2005-0459 Network Low None Requ...
5 2004-03-03 CVE-2004-0129 Network Low None Requ...
7.5 2001-07-31 CVE-2001-1060 Network Low None Requ...

CWE : Common Weakness Enumeration

%idName
57% (4)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
14% (1)CWE-352Cross-Site Request Forgery (CSRF)
14% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')
14% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:8155DSA-1641 phpmyadmin -- several vulnerabilities
oval:org.mitre.oval:def:8223DSA-1675 phpmyadmin -- insufficient input sanitising
oval:org.mitre.oval:def:19750DSA-1675-1 phpmyadmin - cross site scripting

Open Source Vulnerability Database (OSVDB)

idDescription
55514phpMyAdmin Crafted SQL Bookmark XSS
48480phpMyAdmin libraries/js_escape.lib.php PMA_escapeJsString() Function MSIE Nul...
48154phpMyAdmin server_databases.php sort_by Variable Arbitrary PHP Code Execution
47487phpMyAdmin setup.php Configuration Manipulation Based XSS
47486phpMyAdmin setup.php Cross-Frame Scripting
Hide | Show 14 More...
idDescription
47322phpMyAdmin index.php Multiple Parameter CSRF
47321phpMyAdmin db_create.php db Parameter CSRF
38835phpMyAdmin index.php convcharset Parameter XSS
26949phpMyAdmin table Parameter XSS
24450phpMyAdmin Themes Directory Unspecified Scripts XSS
21487phpMyAdmin /libraries Directory Multiple Unspecified Script XSS
21486phpMyAdmin HTTP_HOST Parameter XSS
19049phpMyAdmin Cookie Username Field XSS
19048phpMyAdmin error.php error Parameter XSS
15226phpMyAdmin index.php convcharset Parameter XSS
8505phpMyAdmin /libraries/select_lang.lib.php Direct Request Path Disclosure
8401phpMyAdmin tbl_rename.php Arbitrary Command Execution
8400phpMyAdmin tbl_copy.php Arbitrary Command Execution
3800phpMyAdmin export.php what Parameter Traversal Arbitrary File Access

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2009-08-17Name : Mandrake Security Advisory MDVSA-2009:192 (phpmyadmin)
File : nvt/mdksa_2009_192.nasl
2009-07-06Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin19.nasl
2009-07-06Name : Fedora Core 11 FEDORA-2009-7329 (phpMyAdmin)
File : nvt/fcore_2009_7329.nasl
2009-07-06Name : Fedora Core 9 FEDORA-2009-7337 (phpMyAdmin)
File : nvt/fcore_2009_7337.nasl
2009-07-06Name : Fedora Core 10 FEDORA-2009-7340 (phpMyAdmin)
File : nvt/fcore_2009_7340.nasl
Hide | Show 20 More...
idDescription
2009-07-03Name : phpMyAdmin SQL bookmark XSS Vulnerability
File : nvt/gb_phpmyadmin_sql_bookmark_xss_vuln.nasl
2009-03-20Name : Gentoo Security Advisory GLSA 200903-32 (phpmyadmin)
File : nvt/glsa_200903_32.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-6502
File : nvt/gb_fedora_2008_6502_phpMyAdmin_fc9.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-6868
File : nvt/gb_fedora_2008_6868_phpMyAdmin_fc9.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-8335
File : nvt/gb_fedora_2008_8335_phpMyAdmin_fc9.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-8370
File : nvt/gb_fedora_2008_8370_phpMyAdmin_fc9.nasl
2009-02-02Name : SuSE Security Summary SUSE-SR:2009:003
File : nvt/suse_sr_2009_003.nasl
2008-12-03Name : Debian Security Advisory DSA 1675-1 (phpmyadmin)
File : nvt/deb_1675_1.nasl
2008-10-03Name : phpMyAdmin 'server_databases.php' Remote Command Execution Vulnerability
File : nvt/secpod_phpmyadmin_remote_command_exe_vuln_900130.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200512-03 (phpmyadmin)
File : nvt/glsa_200512_03.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200504-08 (phpMyAdmin)
File : nvt/glsa_200504_08.nasl
2008-09-24Name : Debian Security Advisory DSA 1641-1 (phpmyadmin)
File : nvt/deb_1641_1.nasl
2008-09-24Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin15.nasl
2008-09-24Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin16.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200402-05 (phpmyadmin)
File : nvt/glsa_200402_05.nasl
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin4.nasl
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin7.nasl
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin8.nasl
2008-09-04Name : FreeBSD Ports: phpmyadmin
File : nvt/freebsd_phpmyadmin10.nasl
2008-09-04Name : FreeBSD Ports: phpmyadmin, phpMyAdmin
File : nvt/freebsd_phpmyadmin2.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2009-07-21Name : The remote openSUSE host is missing a security update.
File : suse_11_0_phpMyAdmin-090119.nasl - Type : ACT_GATHER_INFO
2009-07-06Name : The remote Fedora host is missing a security update.
File : fedora_2009-7329.nasl - Type : ACT_GATHER_INFO
2009-07-06Name : The remote Fedora host is missing a security update.
File : fedora_2009-7337.nasl - Type : ACT_GATHER_INFO
2009-07-06Name : The remote Fedora host is missing a security update.
File : fedora_2009-7340.nasl - Type : ACT_GATHER_INFO
2009-07-01Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_ba73f49465a811deaef5001c2514716c.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2009-04-23Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_cc0fb686655011d880e30020ed76ef5a.nasl - Type : ACT_GATHER_INFO
2009-03-19Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200903-32.nasl - Type : ACT_GATHER_INFO
2009-01-22Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5935.nasl - Type : ACT_GATHER_INFO
2008-12-03Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1675.nasl - Type : ACT_GATHER_INFO
2008-11-18Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5781.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8269.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8286.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8335.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8370.nasl - Type : ACT_GATHER_INFO
2008-09-23Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1641.nasl - Type : ACT_GATHER_INFO
2008-09-17Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_74bf1594849311ddbb640030843d3802.nasl - Type : ACT_GATHER_INFO
2008-07-31Name : The remote Fedora host is missing a security update.
File : fedora_2008-6810.nasl - Type : ACT_GATHER_INFO
2008-07-31Name : The remote Fedora host is missing a security update.
File : fedora_2008-6868.nasl - Type : ACT_GATHER_INFO
2008-07-18Name : The remote Fedora host is missing a security update.
File : fedora_2008-6450.nasl - Type : ACT_GATHER_INFO
2008-07-18Name : The remote Fedora host is missing a security update.
File : fedora_2008-6502.nasl - Type : ACT_GATHER_INFO
2008-03-13Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5083.nasl - Type : ACT_GATHER_INFO
2008-03-13Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5084.nasl - Type : ACT_GATHER_INFO
2007-11-26Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_15485ae8984811dc9e480016179b2dd5.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-2300.nasl - Type : ACT_GATHER_INFO
2007-02-18Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2006_071.nasl - Type : ACT_GATHER_INFO