English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.70802
Category:Gentoo Local Security Checks
Title:Gentoo Security Advisory GLSA 201201-01 (phpMyAdmin)
Summary:The remote host is missing updates announced in;advisory GLSA 201201-01.
Description:Summary:
The remote host is missing updates announced in
advisory GLSA 201201-01.

Vulnerability Insight:
Multiple vulnerabilities were found in phpMyAdmin, the most severe
of which allows the execution of arbitrary PHP code.

Solution:
All phpMyAdmin users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-db/phpmyadmin-3.4.9'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2008-7251
BugTraq ID: 37826
http://www.securityfocus.com/bid/37826
Debian Security Information: DSA-2034 (Google Search)
http://www.debian.org/security/2010/dsa-2034
http://secunia.com/advisories/38211
http://secunia.com/advisories/39503
SuSE Security Announcement: SUSE-SR:2010:001 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html
http://www.vupen.com/english/advisories/2010/0910
Common Vulnerability Exposure (CVE) ID: CVE-2008-7252
Common Vulnerability Exposure (CVE) ID: CVE-2010-2958
http://www.openwall.com/lists/oss-security/2010/09/01/2
http://www.openwall.com/lists/oss-security/2010/09/01/3
http://secunia.com/advisories/41206
http://www.vupen.com/english/advisories/2010/2242
Common Vulnerability Exposure (CVE) ID: CVE-2010-3055
BugTraq ID: 42591
http://www.securityfocus.com/bid/42591
Debian Security Information: DSA-2097 (Google Search)
http://www.debian.org/security/2010/dsa-2097
http://www.mandriva.com/security/advisories?name=MDVSA-2010:163
http://secunia.com/advisories/41058
http://secunia.com/advisories/41185
http://www.vupen.com/english/advisories/2010/2223
http://www.vupen.com/english/advisories/2010/2231
Common Vulnerability Exposure (CVE) ID: CVE-2010-3056
BugTraq ID: 42584
http://www.securityfocus.com/bid/42584
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045991.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045997.html
http://www.mandriva.com/security/advisories?name=MDVSA-2010:164
http://yehg.net/lab/pr0js/advisories/phpmyadmin/%5Bphpmyadmin-3.3.5%5D_cross_site_scripting%28XSS%29
http://secunia.com/advisories/41000
Common Vulnerability Exposure (CVE) ID: CVE-2010-3263
http://www.mandriva.com/security/advisories?name=MDVSA-2010:186
http://secunia.com/advisories/41210
XForce ISS Database: phpmyadmin-uns-xss(61675)
https://exchange.xforce.ibmcloud.com/vulnerabilities/61675
Common Vulnerability Exposure (CVE) ID: CVE-2011-0986
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054349.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/054355.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:026
http://secunia.com/advisories/43478
http://www.vupen.com/english/advisories/2011/0385
XForce ISS Database: phpmyadmin-readme-path-disclosure(65424)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65424
Common Vulnerability Exposure (CVE) ID: CVE-2011-0987
BugTraq ID: 46359
http://www.securityfocus.com/bid/46359
Debian Security Information: DSA-2167 (Google Search)
http://www.debian.org/security/2011/dsa-2167
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054525.html
http://secunia.com/advisories/43324
http://secunia.com/advisories/43391
http://www.vupen.com/english/advisories/2011/0381
http://www.vupen.com/english/advisories/2011/0409
http://www.vupen.com/english/advisories/2011/0512
http://www.vupen.com/english/advisories/2011/0570
XForce ISS Database: phpmyadmin-bookmark-security-bypass(65390)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65390
Common Vulnerability Exposure (CVE) ID: CVE-2011-2505
Bugtraq: 20110707 phpMyAdmin 3.x Multiple Remote Code Executions (Google Search)
http://www.securityfocus.com/archive/1/518804/100/0/threaded
Debian Security Information: DSA-2286 (Google Search)
http://www.debian.org/security/2011/dsa-2286
http://www.exploit-db.com/exploits/17514/
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062719.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:124
http://ha.xxor.se/2011/07/phpmyadmin-3x-multiple-remote-code.html
http://www.xxor.se/advisories/phpMyAdmin_3.x_Multiple_Remote_Code_Executions.txt
http://www.openwall.com/lists/oss-security/2011/06/28/2
http://www.openwall.com/lists/oss-security/2011/06/28/6
http://www.openwall.com/lists/oss-security/2011/06/28/8
http://www.openwall.com/lists/oss-security/2011/06/29/11
http://www.osvdb.org/73611
http://secunia.com/advisories/45139
http://secunia.com/advisories/45292
http://secunia.com/advisories/45315
http://securityreason.com/securityalert/8306
Common Vulnerability Exposure (CVE) ID: CVE-2011-2506
http://www.osvdb.org/73612
Common Vulnerability Exposure (CVE) ID: CVE-2011-2507
http://0x6a616d6573.blogspot.com/2011/07/phpmyadmin-fud.html
http://ha.xxor.se/2011/07/phpmyadmin-3x-pregreplace-rce-poc.html
http://www.osvdb.org/73613
Common Vulnerability Exposure (CVE) ID: CVE-2011-2508
http://www.osvdb.org/73614
Common Vulnerability Exposure (CVE) ID: CVE-2011-2642
BugTraq ID: 48874
http://www.securityfocus.com/bid/48874
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063410.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063418.html
http://secunia.com/advisories/45365
http://secunia.com/advisories/45515
XForce ISS Database: phpmyadmin-table-print-xss(68750)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68750
Common Vulnerability Exposure (CVE) ID: CVE-2011-2643
XForce ISS Database: phpmyadmin-mimetype-file-include(68767)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68767
Common Vulnerability Exposure (CVE) ID: CVE-2011-2718
45365
45515
48874
74111
http://osvdb.org/74111
FEDORA-2011-9725
FEDORA-2011-9734
MDVSA-2011:124
[oss-security] 20110725 CVE-Request -- phpMyAdmin -- PMASA-2011-11 and PMASA-2011-12
http://www.openwall.com/lists/oss-security/2011/07/25/4
[oss-security] 20110726 Re: CVE-Request -- phpMyAdmin -- PMASA-2011-11 and PMASA-2011-12
http://www.openwall.com/lists/oss-security/2011/07/26/10
http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=3ae58f0cd6b89ad4767920f9b214c38d3f6d4393
http://www.phpmyadmin.net/home_page/security/PMASA-2011-11.php
https://bugzilla.redhat.com/show_bug.cgi?id=725383
phpmyadmin-schema-file-include(68768)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68768
Common Vulnerability Exposure (CVE) ID: CVE-2011-2719
20110724 phpMyAdmin 3.x Conditional Session Manipulation
http://seclists.org/fulldisclosure/2011/Jul/300
http://www.securityfocus.com/archive/1/518967/100/0/threaded
20110804 Re: [Full-disclosure] phpMyAdmin 3.x Conditional Session Manipulation
http://www.securityfocus.com/archive/1/519155/100/0/threaded
45315
74112
http://osvdb.org/74112
8322
http://securityreason.com/securityalert/8322
DSA-2286
http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=571cdc6ff4bf375871b594f4e06f8ad3159d1754
http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=e7bb42c002885c2aca7aba4d431b8c63ae4de9b7
http://www.phpmyadmin.net/home_page/security/PMASA-2011-12.php
http://www.xxor.se/advisories/phpMyAdmin_3.x_Conditional_Session_Manipulation.txt
https://bugzilla.redhat.com/show_bug.cgi?id=725384
phpmyadmin-swekey-file-overwrite(68769)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68769
Common Vulnerability Exposure (CVE) ID: CVE-2011-3646
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069235.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069237.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069234.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:158
http://secunia.com/advisories/46874
Common Vulnerability Exposure (CVE) ID: CVE-2011-4064
BugTraq ID: 50175
http://www.securityfocus.com/bid/50175
http://securitytracker.com/id?1026199
Common Vulnerability Exposure (CVE) ID: CVE-2011-4107
20111102 PhpMyAdmin Arbitrary File Reading
http://seclists.org/fulldisclosure/2011/Nov/21
46447
http://secunia.com/advisories/46447
50497
http://www.securityfocus.com/bid/50497
76798
http://osvdb.org/76798
8533
http://securityreason.com/securityalert/8533
DSA-2391
http://www.debian.org/security/2012/dsa-2391
FEDORA-2011-15831
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069649.html
FEDORA-2011-15841
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069625.html
FEDORA-2011-15846
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/069635.html
MDVSA-2011:198
http://www.mandriva.com/security/advisories?name=MDVSA-2011:198
[oss-security] 20111103 CVE Request -- phpMyAdmin -- Arbitrary local file read flaw by loading XML strings / importing XML files
http://www.openwall.com/lists/oss-security/2011/11/03/3
[oss-security] 20111103 Re: CVE Request -- phpMyAdmin -- Arbitrary local file read flaw by loading XML strings / importing XML files
http://www.openwall.com/lists/oss-security/2011/11/03/5
http://packetstormsecurity.org/files/view/106511/phpmyadmin-fileread.txt
http://www.phpmyadmin.net/home_page/security/PMASA-2011-17.php
http://www.wooyun.org/bugs/wooyun-2010-03185
https://bugzilla.redhat.com/show_bug.cgi?id=751112
phpmyadmin-xml-info-disclosure(71108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/71108
Common Vulnerability Exposure (CVE) ID: CVE-2011-4634
http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071040.html
Common Vulnerability Exposure (CVE) ID: CVE-2011-4780
BugTraq ID: 51226
http://www.securityfocus.com/bid/51226
http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071537.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071523.html
Common Vulnerability Exposure (CVE) ID: CVE-2011-4782
XForce ISS Database: phpmyadmin-configfileclass-xss(71938)
https://exchange.xforce.ibmcloud.com/vulnerabilities/71938
CopyrightCopyright (C) 2012 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.