This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:phpmyadmin:phpmyadmin:2.10.1
Detail
VendorPhpmyadminFirst view 2007-11-23
ProductPhpmyadminLast view 2009-07-01
Version2.10.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:phpmyadmin:phpmyadmin

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.32009-07-01CVE-2009-2284NetworkMediumNone Requ...
4.32008-09-30CVE-2008-4326NetworkMediumNone Requ...
8.52008-09-18CVE-2008-4096NetworkMediumRequires ...
2.62008-08-04CVE-2008-3457NetworkHighNone Requ...
6.42008-08-04CVE-2008-3456NetworkLowNone Requ...
Hide | Show 4 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
3.52008-07-16CVE-2008-3197NetworkMediumRequires ...
2.62008-07-02CVE-2008-2960NetworkHighNone Requ...
3.52008-04-23CVE-2008-1924NetworkMediumRequires ...
2.62007-11-23CVE-2007-6100NetworkHighNone Requ...

CWE : Common Weakness Enumeration

%idName
55% (5)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (1)CWE-352Cross-Site Request Forgery (CSRF)
11% (1)CWE-200Information Exposure
11% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')
11% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:8041DSA-1557 phpmyadmin -- insufficient input sanitising
oval:org.mitre.oval:def:18667DSA-1557-1 phpmyadmin - several vulnerabilities
oval:org.mitre.oval:def:8155DSA-1641 phpmyadmin -- several vulnerabilities
oval:org.mitre.oval:def:8223DSA-1675 phpmyadmin -- insufficient input sanitising
oval:org.mitre.oval:def:19750DSA-1675-1 phpmyadmin - cross site scripting

Open Source Vulnerability Database (OSVDB)

idDescription
55514phpMyAdmin Crafted SQL Bookmark XSS
48480phpMyAdmin libraries/js_escape.lib.php PMA_escapeJsString() Function MSIE Nul...
48154phpMyAdmin server_databases.php sort_by Variable Arbitrary PHP Code Execution
47487phpMyAdmin setup.php Configuration Manipulation Based XSS
47486phpMyAdmin setup.php Cross-Frame Scripting
Hide | Show 5 More...
idDescription
47322phpMyAdmin index.php Multiple Parameter CSRF
47321phpMyAdmin db_create.php db Parameter CSRF
46511phpMyAdmin /libraries Multiple Scripts Unspecified XSS
44577phpMyAdmin Crafted HTTP Request UploadDir Parameter Arbitrary File Access
38835phpMyAdmin index.php convcharset Parameter XSS

OpenVAS Exploits

idDescription
2009-08-17Name : Mandrake Security Advisory MDVSA-2009:192 (phpmyadmin)
File : nvt/mdksa_2009_192.nasl
2009-07-06Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin19.nasl
2009-07-06Name : Fedora Core 11 FEDORA-2009-7329 (phpMyAdmin)
File : nvt/fcore_2009_7329.nasl
2009-07-06Name : Fedora Core 9 FEDORA-2009-7337 (phpMyAdmin)
File : nvt/fcore_2009_7337.nasl
2009-07-06Name : Fedora Core 10 FEDORA-2009-7340 (phpMyAdmin)
File : nvt/fcore_2009_7340.nasl
Hide | Show 18 More...
idDescription
2009-07-03Name : phpMyAdmin SQL bookmark XSS Vulnerability
File : nvt/gb_phpmyadmin_sql_bookmark_xss_vuln.nasl
2009-03-20Name : Gentoo Security Advisory GLSA 200903-32 (phpmyadmin)
File : nvt/glsa_200903_32.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-6502
File : nvt/gb_fedora_2008_6502_phpMyAdmin_fc9.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-6868
File : nvt/gb_fedora_2008_6868_phpMyAdmin_fc9.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-8335
File : nvt/gb_fedora_2008_8335_phpMyAdmin_fc9.nasl
2009-02-17Name : Fedora Update for phpMyAdmin FEDORA-2008-8370
File : nvt/gb_fedora_2008_8370_phpMyAdmin_fc9.nasl
2009-02-02Name : SuSE Security Summary SUSE-SR:2009:003
File : nvt/suse_sr_2009_003.nasl
2008-12-03Name : Debian Security Advisory DSA 1675-1 (phpmyadmin)
File : nvt/deb_1675_1.nasl
2008-10-03Name : phpMyAdmin 'server_databases.php' Remote Command Execution Vulnerability
File : nvt/secpod_phpmyadmin_remote_command_exe_vuln_900130.nasl
2008-09-24Name : Debian Security Advisory DSA 1641-1 (phpmyadmin)
File : nvt/deb_1641_1.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200805-02 (phpmyadmin)
File : nvt/glsa_200805_02.nasl
2008-09-24Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin15.nasl
2008-09-24Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin16.nasl
2008-09-04Name : FreeBSD Ports: phpmyadmin
File : nvt/freebsd_phpmyadmin10.nasl
2008-09-04Name : FreeBSD Ports: phpmyadmin
File : nvt/freebsd_phpmyadmin5.nasl
2008-09-04Name : FreeBSD Ports: phpmyadmin
File : nvt/freebsd_phpmyadmin7.nasl
2008-09-04Name : FreeBSD Ports: phpmyadmin
File : nvt/freebsd_phpmyadmin9.nasl
2008-04-30Name : Debian Security Advisory DSA 1557-1 (phpmyadmin)
File : nvt/deb_1557_1.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2009-07-21Name : The remote openSUSE host is missing a security update.
File : suse_11_0_phpMyAdmin-090119.nasl - Type : ACT_GATHER_INFO
2009-07-06Name : The remote Fedora host is missing a security update.
File : fedora_2009-7329.nasl - Type : ACT_GATHER_INFO
2009-07-06Name : The remote Fedora host is missing a security update.
File : fedora_2009-7337.nasl - Type : ACT_GATHER_INFO
2009-07-06Name : The remote Fedora host is missing a security update.
File : fedora_2009-7340.nasl - Type : ACT_GATHER_INFO
2009-07-01Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_ba73f49465a811deaef5001c2514716c.nasl - Type : ACT_GATHER_INFO
Hide | Show 21 More...
idDescription
2009-03-19Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200903-32.nasl - Type : ACT_GATHER_INFO
2009-01-22Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5935.nasl - Type : ACT_GATHER_INFO
2008-12-03Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1675.nasl - Type : ACT_GATHER_INFO
2008-11-18Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5781.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8269.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8286.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8335.nasl - Type : ACT_GATHER_INFO
2008-09-25Name : The remote Fedora host is missing a security update.
File : fedora_2008-8370.nasl - Type : ACT_GATHER_INFO
2008-09-23Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1641.nasl - Type : ACT_GATHER_INFO
2008-09-17Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_74bf1594849311ddbb640030843d3802.nasl - Type : ACT_GATHER_INFO
2008-07-31Name : The remote Fedora host is missing a security update.
File : fedora_2008-6810.nasl - Type : ACT_GATHER_INFO
2008-07-31Name : The remote Fedora host is missing a security update.
File : fedora_2008-6868.nasl - Type : ACT_GATHER_INFO
2008-07-18Name : The remote Fedora host is missing a security update.
File : fedora_2008-6450.nasl - Type : ACT_GATHER_INFO
2008-07-18Name : The remote Fedora host is missing a security update.
File : fedora_2008-6502.nasl - Type : ACT_GATHER_INFO
2008-07-02Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_e285a1f4456811ddae960030843d3802.nasl - Type : ACT_GATHER_INFO
2008-05-09Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200805-02.nasl - Type : ACT_GATHER_INFO
2008-04-28Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1557.nasl - Type : ACT_GATHER_INFO
2008-04-28Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_fe971a0f124611ddbab70016179b2dd5.nasl - Type : ACT_GATHER_INFO
2008-03-13Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5083.nasl - Type : ACT_GATHER_INFO
2008-03-13Name : The remote openSUSE host is missing a security update.
File : suse_phpMyAdmin-5084.nasl - Type : ACT_GATHER_INFO