This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:phpmyadmin:phpmyadmin:2.7.0_pl1 |
| Detail | |||
|---|---|---|---|
| Vendor | Phpmyadmin | First view | 2005-12-21 |
| Product | Phpmyadmin | Last view | 2009-07-01 |
| Version | 2.7.0_pl1 | Type | Application |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:phpmyadmin:phpmyadmin | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2009-07-01 | CVE-2009-2284 | Network | Medium | None Requ... | |
| 4.3 | 2008-09-30 | CVE-2008-4326 | Network | Medium | None Requ... | |
| 3.5 | 2008-07-16 | CVE-2008-3197 | Network | Medium | Requires ... | |
| 7.5 | 2006-04-18 | CVE-2006-1804 | Network | Low | None Requ... | |
| 4.3 | 2006-04-10 | CVE-2006-1678 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 7.5 | 2005-12-21 | CVE-2005-4450 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 66% (2) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 33% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 55514 | phpMyAdmin Crafted SQL Bookmark XSS |
| 48480 | phpMyAdmin libraries/js_escape.lib.php PMA_escapeJsString() Function MSIE Nul... |
| 47322 | phpMyAdmin index.php Multiple Parameter CSRF |
| 47321 | phpMyAdmin db_create.php db Parameter CSRF |
| 24642 | phpMyAdmin sql.php sql_query Parameter SQL Injection |
| id | Description |
|---|---|
| 24450 | phpMyAdmin Themes Directory Unspecified Scripts XSS |
| 21978 | phpMyAdmin server_privileges.php Multiple Parameter CSRF |
