jetlib.sec » Tags » phpmyadmin

Feeds

133445 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

124 items tagged "phpmyadmin"

Related tags: string function [+], site [+], code [+], vulnerabilities [+], swekey [+], day [+], cross site scripting [+], code execution [+], xss [+], page [+], simplexml [+], security [+], mandriva linux [+], load [+], information disclosure vulnerability [+], database [+], txt [+], session [+], manipulation [+], inclusion [+], error [+], client [+], yakamoz [+], xml [+], variable [+], tracking [+], side [+], search [+], reading vulnerability [+], reading [+], read [+], perl script [+], path [+], mandriva [+], linux security [+], linux [+], interface [+], host [+], force [+], finder [+], exploit [+], dsa [+], disclosure [+], database search [+], cs4 [+], brute force [+], beta [+], attacker [+], arbitrary [+], vulnerability [+], webapps [+], version [+], url parameter [+], url [+], uri redirection [+], setup script [+], setup php [+], setup [+], php [+], parameter [+], html [+], file php [+], execution [+], configuration file [+], configuration [+], bookmark [+], xsrf [+], wwwsrv [+], user [+], upload [+], unserialize [+], shell [+], root password [+], replace [+], preg [+], poc [+], local [+], highly [+], haunt [+], full disclosure [+], feature [+], executions [+], edu [+], dork [+], default [+], debug [+], database access [+], critical flaws [+], bypass [+], backtrace [+], auth [+], multiple [+], cross [+], remote [+], mdvsa [+], file [+], bugtraq [+]

• April 04, 2012
• 9:00

  Bugtraq: [ MDVSA-2012:050 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2012:050 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• January 23, 2012
• 8:00

  Bugtraq: [SECURITY] [DSA 2391-1] phpmyadmin security update

   » ‎ SecurityFocus Vulnerabilities
  [SECURITY] [DSA 2391-1] phpmyadmin security update

  Tags:  security phpmyadmin dsa  

• 0:00

  Vuln: phpMyAdmin Tracking Feature Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Tracking Feature Multiple Cross Site Scripting Vulnerabilities

  Tags:  feature tracking phpmyadmin  

• 0:00

  Vuln: phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

  Tags:  load phpmyadmin simplexml information-disclosure-vulnerability string-function  

• January 16, 2012
• 0:00

  Vuln: phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

  Tags:  load phpmyadmin simplexml information-disclosure-vulnerability string-function  

• January 15, 2012
• 17:35

  phpMyAdmin 3.3.x / 3.4.x Local File Inclusion Via XXE Injection

   » ‎ Packet Storm Security Exploits
  phpMyAdmin versions 3.3.x and 3.4.x suffer from a local file inclusion vulnerability via XXE injection. The attacker must be logged in to MySQL via phpMyAdmin.

  Tags:  inclusion phpmyadmin file attacker vulnerability  

• 17:35

  phpMyAdmin 3.3.x / 3.4.x Local File Inclusion Via XXE Injection

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin versions 3.3.x and 3.4.x suffer from a local file inclusion vulnerability via XXE injection. The attacker must be logged in to MySQL via phpMyAdmin.

  Tags:  inclusion phpmyadmin file attacker vulnerability  

• 17:35

  phpMyAdmin 3.3.x / 3.4.x Local File Inclusion Via XXE Injection

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin versions 3.3.x and 3.4.x suffer from a local file inclusion vulnerability via XXE injection. The attacker must be logged in to MySQL via phpMyAdmin.

  Tags:  inclusion phpmyadmin file attacker vulnerability  

• January 14, 2012
• 14:00

  [webapps / 0day] - phpMyAdmin 3.3.X and 3.4.X - Local File Inclusion via XXE Injection

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - phpMyAdmin 3.3.X and 3.4.X - Local File Inclusion via XXE Injection

  Tags:  day phpmyadmin local inclusion  

• January 06, 2012
• 0:00

  Vuln: phpMyAdmin '$host' Variable HTML Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin '$host' Variable HTML Injection Vulnerability

  Tags:  phpmyadmin variable host vulnerability  

• January 05, 2012
• 0:00

  Vuln: phpMyAdmin Prior to 3.4.8 Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.4.8 Multiple Cross Site Scripting Vulnerabilities

  Tags:  cross multiple phpmyadmin  

• 0:00

  Vuln: phpMyAdmin Bookmark Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Bookmark Security Bypass Vulnerability

  Tags:  vulnerability phpmyadmin  

• 0:00

  Vuln: phpMyAdmin Configuration File PHP Code Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Configuration File PHP Code Injection Vulnerability

  Tags:  configuration phpmyadmin file file-php configuration-file vulnerability  

• January 03, 2012
• 0:00

  Vuln: phpMyAdmin Prior to 3.4.9 Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.4.9 Multiple Cross Site Scripting Vulnerabilities

  Tags:  cross multiple phpmyadmin  

• January 02, 2012
• 10:00

  Bugtraq: [ MDVSA-2011:198 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2011:198 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• 0:00

  Vuln: phpMyAdmin Prior to 3.4.8 Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.4.8 Multiple Cross Site Scripting Vulnerabilities

  Tags:  cross multiple phpmyadmin  

• 0:00

  Vuln: phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

  Tags:  load phpmyadmin simplexml information-disclosure-vulnerability string-function  

• 0:00

  Vuln: phpMyAdmin '$host' Variable HTML Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin '$host' Variable HTML Injection Vulnerability

  Tags:  phpmyadmin variable host vulnerability  

• December 23, 2011
• 0:00

  Vuln: phpMyAdmin '$host' Variable HTML Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin '$host' Variable HTML Injection Vulnerability

  Tags:  phpmyadmin variable host vulnerability  

• December 22, 2011
• 14:22

  phpMyAdmin 3.4.8 Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  phpMyAdmin version 3.4.8 suffers from a cross site scripting vulnerability.

  Tags:  cross phpmyadmin site vulnerability  

• 14:22

  phpMyAdmin 3.4.8 Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin version 3.4.8 suffers from a cross site scripting vulnerability.

  Tags:  cross phpmyadmin site vulnerability  

• 14:22

  phpMyAdmin 3.4.8 Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin version 3.4.8 suffers from a cross site scripting vulnerability.

  Tags:  cross phpmyadmin site vulnerability  

• November 23, 2011
• 0:00

  Vuln: phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

  Tags:  load phpmyadmin simplexml information-disclosure-vulnerability string-function  

• November 04, 2011
• 0:00

  Vuln: phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability

  Tags:  load phpmyadmin simplexml information-disclosure-vulnerability string-function  

• November 02, 2011
• 7:49

  phpMyAdmin Arbitrary File Read

   » ‎ Packet Storm Security Exploits
  phpMyAdmin suffers from a remote arbitrary file reading vulnerability when using a simplexml_load_string function meant to read xml from user input.

  Tags:  arbitrary file reading read phpmyadmin reading-vulnerability string-function xml  

• 7:49

  phpMyAdmin Arbitrary File Read

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin suffers from a remote arbitrary file reading vulnerability when using a simplexml_load_string function meant to read xml from user input.

  Tags:  arbitrary file reading read phpmyadmin reading-vulnerability string-function xml  

• 7:49

  phpMyAdmin Arbitrary File Read

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin suffers from a remote arbitrary file reading vulnerability when using a simplexml_load_string function meant to read xml from user input.

  Tags:  arbitrary file reading read phpmyadmin reading-vulnerability string-function xml  

• October 21, 2011
• 9:00

  Bugtraq: [ MDVSA-2011:158 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2011:158 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• 0:00

  Vuln: phpMyAdmin Setup Interface Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Setup Interface Cross Site Scripting Vulnerability

  Tags:  setup phpmyadmin interface vulnerability  

• October 18, 2011
• 0:00

  Vuln: phpMyAdmin Setup Interface Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Setup Interface Cross Site Scripting Vulnerability

  Tags:  setup phpmyadmin interface vulnerability  

• September 30, 2011
• 0:00

  Vuln: phpMyAdmin Multiple HTML Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Multiple HTML Injection Vulnerabilities

  Tags:  multiple phpmyadmin html  

• September 28, 2011
• 0:00

  Vuln: phpMyAdmin Multiple HTML Injection Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Multiple HTML Injection Vulnerabilities

  Tags:  multiple phpmyadmin html  

• September 13, 2011
• 0:00

  Vuln: phpMyAdmin Tracking Feature Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Tracking Feature Multiple Cross Site Scripting Vulnerabilities

  Tags:  phpmyadmin  

• August 15, 2011
• 8:00

  Bugtraq: [ MDVSA-2011:124 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2011:124 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• August 11, 2011
• 21:00

  [webapps / 0day] - PhpMyadmin XSRF Vuln (Execute SQL Query)

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - PhpMyadmin XSRF Vuln (Execute SQL Query)

  Tags:  day phpmyadmin xsrf  

• August 07, 2011
• 21:00

  [webapps / 0day] - phpMyAdmin Root Password 0day

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - phpMyAdmin Root Password 0day

  Tags:  day phpmyadmin webapps root-password  

• August 05, 2011
• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.3 and 3.4.3.2 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.3 and 3.4.3.2 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• August 04, 2011
• 10:00

  Bugtraq: Re: [Full-disclosure] phpMyAdmin 3.x Conditional Session Manipulation

   » ‎ SecurityFocus Vulnerabilities
  Re: [Full-disclosure] phpMyAdmin 3.x Conditional Session Manipulation

  Tags:  manipulation phpmyadmin session full-disclosure  

• July 27, 2011
• 11:00

  Bugtraq: [SECURITY] [DSA 2286-1] phpmyadmin security update

   » ‎ SecurityFocus Vulnerabilities
  [SECURITY] [DSA 2286-1] phpmyadmin security update

  Tags:  security phpmyadmin dsa  

• July 26, 2011
• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.3 and 3.4.3.2 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.3 and 3.4.3.2 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• July 24, 2011
• 19:11

  phpMyAdmin 3.x Swekey Session Manipulation

   » ‎ Packet Storm Security Advisories
  phpMyAdmin versions below 3.3.10.3 and 3.4.3.2 suffer from a session manipulation vulnerability when the Swekey extension is activated.

  Tags:  phpmyadmin session swekey manipulation vulnerability  

• 19:11

  phpMyAdmin 3.x Swekey Session Manipulation

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin versions below 3.3.10.3 and 3.4.3.2 suffer from a session manipulation vulnerability when the Swekey extension is activated.

  Tags:  phpmyadmin session swekey manipulation vulnerability  

• 19:11

  phpMyAdmin 3.x Swekey Session Manipulation

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin versions below 3.3.10.3 and 3.4.3.2 suffer from a session manipulation vulnerability when the Swekey extension is activated.

  Tags:  phpmyadmin session swekey manipulation vulnerability  

• July 18, 2011
• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• July 11, 2011
• 13:00

  Bugtraq: phpMyAdmin 3.x preg_replace RCE POC

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 3.x preg_replace RCE POC

  Tags:  preg phpmyadmin replace poc  

• 12:01

  Bugtraq: phpMyAdmin 3.x Multiple Remote Code Executions

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 3.x Multiple Remote Code Executions

  Tags:  multiple phpmyadmin remote executions  

• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• July 09, 2011
• 7:48

  phpMyAdmin3 Remote Code Execution

   » ‎ Packet Storm Security Exploits
  Remote code execution exploit for phpMyAdmin versions below 3.3.10.2 and 3.4.3.1.

  Tags:  code phpmyadmin remote code-execution  

• 7:48

  phpMyAdmin3 Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  Remote code execution exploit for phpMyAdmin versions below 3.3.10.2 and 3.4.3.1.

  Tags:  code phpmyadmin remote code-execution  

• 7:48

  phpMyAdmin3 Remote Code Execution

   » ‎ Packet Storm Security Misc. Files
  Remote code execution exploit for phpMyAdmin versions below 3.3.10.2 and 3.4.3.1.

  Tags:  code phpmyadmin remote code-execution  

• 7:44

  phpMyAdmin 3.x Swekey Remote Code Injection

   » ‎ Packet Storm Security Exploits
  phpMyAdmin Swekey remote code injection exploit that affects versions prior to 3.4.3.1 and versions prior to 3.3.10.2.

  Tags:  code phpmyadmin swekey exploit  

• 7:44

  phpMyAdmin 3.x Swekey Remote Code Injection

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin Swekey remote code injection exploit that affects versions prior to 3.4.3.1 and versions prior to 3.3.10.2.

  Tags:  code phpmyadmin swekey exploit  

• 7:44

  phpMyAdmin 3.x Swekey Remote Code Injection

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin Swekey remote code injection exploit that affects versions prior to 3.4.3.1 and versions prior to 3.3.10.2.

  Tags:  code phpmyadmin swekey exploit  

• July 08, 2011
• 21:00

  [webapps / 0day] - phpMyAdmin 3.x Swekey Remote Code Injection Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - phpMyAdmin 3.x Swekey Remote Code Injection Exploit

  Tags:  day phpmyadmin swekey  

• July 07, 2011
• 21:00

  [webapps / 0day] - phpMyAdmin3 (pma3) Remote Code Execution Exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - phpMyAdmin3 (pma3) Remote Code Execution Exploit

  Tags:  day phpmyadmin webapps code-execution  

• 18:12

  phpMyAdmin 3.x Remote Code Execution

   » ‎ Packet Storm Security Exploits
  phpMyAdmin version 3.x suffers from multiple remote code execution vulnerabilities.

  Tags:  code phpmyadmin execution code-execution  

• 18:12

  phpMyAdmin 3.x Remote Code Execution

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin version 3.x suffers from multiple remote code execution vulnerabilities.

  Tags:  code phpmyadmin execution code-execution  

• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• July 06, 2011
• 7:27

  Highly Critical Flaws Haunt phpMyAdmin

   » ‎ Packet Storm Security Headlines
  Highly Critical Flaws Haunt phpMyAdmin

  Tags:  phpmyadmin haunt highly critical-flaws  

• 0:00

  Vuln: phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 Multiple Remote Vulnerabilities

  Tags:  multiple phpmyadmin remote vulnerabilities  

• June 30, 2011
• 7:35

  Yakamoz phpMyAdmin Finder

   » ‎ Packet Storm Security Recent Files
  This is a simple perl script that enumerates various possible directories on a given website in order to determine whether or not a phpMyAdmin instance may be installed.

  Tags:  finder yakamoz phpmyadmin perl-script  

• 7:35

  Yakamoz phpMyAdmin Finder

   » ‎ Packet Storm Security Tools
  This is a simple perl script that enumerates various possible directories on a given website in order to determine whether or not a phpMyAdmin instance may be installed.

  Tags:  finder yakamoz phpmyadmin perl-script  

• 7:35

  Yakamoz phpMyAdmin Finder

   » ‎ Packet Storm Security Misc. Files
  This is a simple perl script that enumerates various possible directories on a given website in order to determine whether or not a phpMyAdmin instance may be installed.

  Tags:  finder yakamoz phpmyadmin perl-script  

• June 06, 2011
• 0:00

  Vuln: phpMyAdmin 'url' Parameter URI Redirection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'url' Parameter URI Redirection Vulnerability

  Tags:  url parameter phpmyadmin uri-redirection url-parameter vulnerability  

• 0:00

  Vuln: phpMyAdmin Tracking Page HTML Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Tracking Page HTML Injection Vulnerability

  Tags:  tracking phpmyadmin page vulnerability  

• May 24, 2011
• 0:00

  Vuln: phpMyAdmin 'url' Parameter URI Redirection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'url' Parameter URI Redirection Vulnerability

  Tags:  url parameter phpmyadmin uri-redirection url-parameter vulnerability  

• 0:00

  Vuln: phpMyAdmin Tracking Page HTML Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Tracking Page HTML Injection Vulnerability

  Tags:  tracking phpmyadmin page vulnerability  

• March 29, 2011
• 0:00

  Vuln: phpMyAdmin Error Page Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Error Page Cross Site Scripting Vulnerability

  Tags:  error phpmyadmin page cross-site-scripting vulnerability  

• March 28, 2011
• 0:00

  Vuln: phpMyAdmin Error Page Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Error Page Cross Site Scripting Vulnerability

  Tags:  error phpmyadmin page  

• March 21, 2011
• 15:00

  [webapps / 0day] - Phpmyadmin direct Database access exploit

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - Phpmyadmin direct Database access exploit

  Tags:  day phpmyadmin database database-access  

• February 28, 2011
• 7:54

  phpMyAdmin 3.3.9 Brute Force / Path Disclosure

   » ‎ Packet Storm Security Advisories
  phpMyAdmin versions 3.3.9 and below suffers from brute force and path disclosure vulnerabilities.

  Tags:  path phpmyadmin force brute-force disclosure  

• 7:54

  phpMyAdmin 3.3.9 Brute Force / Path Disclosure

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin versions 3.3.9 and below suffers from brute force and path disclosure vulnerabilities.

  Tags:  path phpmyadmin force brute-force disclosure  

• 7:54

  phpMyAdmin 3.3.9 Brute Force / Path Disclosure

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin versions 3.3.9 and below suffers from brute force and path disclosure vulnerabilities.

  Tags:  path phpmyadmin force brute-force disclosure  

• February 25, 2011
• 0:00

  Vuln: phpMyAdmin Bookmark Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Bookmark Security Bypass Vulnerability

  Tags:  bookmark phpmyadmin security vulnerability  

• February 21, 2011
• 0:00

  Vuln: phpMyAdmin Error Page Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Error Page Cross Site Scripting Vulnerability

  Tags:  error phpmyadmin page cross-site-scripting vulnerability  

• 0:00

  Vuln: phpMyAdmin Database Search Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Database Search Cross Site Scripting Vulnerability

  Tags:  phpmyadmin database search cross-site-scripting database-search vulnerability  

• 0:00

  Vuln: phpMyAdmin Bookmark Security Bypass Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Bookmark Security Bypass Vulnerability

  Tags:  bookmark phpmyadmin security vulnerability  

• February 16, 2011
• 13:00

  Bugtraq: [SECURITY] [DSA 2167-1] phpmyadmin security update

   » ‎ SecurityFocus Vulnerabilities
  [SECURITY] [DSA 2167-1] phpmyadmin security update

  Tags:  security phpmyadmin dsa  

• February 14, 2011
• 8:00

  Bugtraq: [ MDVSA-2011:026 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2011:026 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• January 26, 2011
• 14:28

  phpMyAdmin 3.4.x Stored Cross Site Scripting

   » ‎ Packet Storm Security Exploits
  phpMyAdmin versions 3.4.x and 3.4.0 beta 2 suffer from a stored cross site scripting vulnerability.

  Tags:  cross phpmyadmin site vulnerability beta  

• 14:28

  phpMyAdmin 3.4.x Stored Cross Site Scripting

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin versions 3.4.x and 3.4.0 beta 2 suffer from a stored cross site scripting vulnerability.

  Tags:  vulnerability beta phpmyadmin  

• 14:28

  phpMyAdmin 3.4.x Stored Cross Site Scripting

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin versions 3.4.x and 3.4.0 beta 2 suffer from a stored cross site scripting vulnerability.

  Tags:  cross phpmyadmin site vulnerability beta  

• January 05, 2011
• 19:49

  Mandriva Linux Security Advisory 2011-000

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2011-000 - error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers to conduct cross-site scripting attacks via a crafted BBcode tag containing @ characters, as demonstrated using [a@url@page]. phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function. This upgrade provides the latest phpmyadmin version for MES5 and patches the version for CS4 to address these vulnerabilities.

  Tags:  mandriva phpmyadmin linux mandriva-linux linux-security cs4  

• 19:49

  Mandriva Linux Security Advisory 2011-000

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2011-000 - error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers to conduct cross-site scripting attacks via a crafted BBcode tag containing @ characters, as demonstrated using [a@url@page]. phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function. This upgrade provides the latest phpmyadmin version for MES5 and patches the version for CS4 to address these vulnerabilities.

  Tags:  mandriva phpmyadmin linux mandriva-linux linux-security cs4  

• 19:49

  Mandriva Linux Security Advisory 2011-000

   » ‎ Packet Storm Security Misc. Files
  Mandriva Linux Security Advisory 2011-000 - error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers to conduct cross-site scripting attacks via a crafted BBcode tag containing @ characters, as demonstrated using [a@url@page]. phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function. This upgrade provides the latest phpmyadmin version for MES5 and patches the version for CS4 to address these vulnerabilities.

  Tags:  mandriva phpmyadmin linux mandriva-linux linux-security cs4  

• 10:00

  Bugtraq: [ MDVSA-2011:000 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2011:000 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• 0:00

  Vuln: phpMyAdmin Error Page Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Error Page Cross Site Scripting Vulnerability

  Tags:  error phpmyadmin page cross-site-scripting vulnerability  

• December 31, 2010
• 0:00

  Vuln: phpMyAdmin Database Search Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Database Search Cross Site Scripting Vulnerability

  Tags:  phpmyadmin database search cross-site-scripting database-search vulnerability  

• December 08, 2010
• 0:00

  Vuln: phpMyAdmin Database Search Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Database Search Cross Site Scripting Vulnerability

  Tags:  phpmyadmin database search cross-site-scripting database-search vulnerability  

• December 06, 2010
• 14:00

  [webapps / 0day] - PhpMyAdmin Client Side 0Day Code Injection and Link Falsification

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  [webapps / 0day] - PhpMyAdmin Client Side 0Day Code Injection and Link Falsification

  Tags:  client day phpmyadmin  

• 13:58

  phpMyAdmin Client Side Code Injection

   » ‎ Packet Storm Security Exploits
  phpMyAdmin suffers from client side code injection and redirect link falsification vulnerabilities.

  Tags:  client phpmyadmin side  

• 13:58

  phpMyAdmin Client Side Code Injection

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin suffers from client side code injection and redirect link falsification vulnerabilities.

  Tags:  client phpmyadmin side  

• 13:58

  phpMyAdmin Client Side Code Injection

   » ‎ Packet Storm Security Misc. Files
  phpMyAdmin suffers from client side code injection and redirect link falsification vulnerabilities.

  Tags:  client phpmyadmin side  

• November 30, 2010
• 8:00

  Bugtraq: [ MDVSA-2010:244 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2010:244 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• October 25, 2010
• 0:00

  Vuln: phpMyAdmin Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Multiple Cross Site Scripting Vulnerabilities

  Tags:  cross multiple phpmyadmin  

• 0:00

  Vuln: phpMyAdmin Configuration File PHP Code Injection Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Configuration File PHP Code Injection Vulnerability

  Tags:  configuration phpmyadmin file file-php configuration-file vulnerability  

• September 21, 2010
• 8:00

  Bugtraq: [ MDVSA-2010:186 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2010:186 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• September 06, 2010
• 0:00

  Vuln: phpMyAdmin Multiple Cross Site Scripting Vulnerabilities

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Multiple Cross Site Scripting Vulnerabilities

  Tags:  cross multiple phpmyadmin  

• September 02, 2010
• 0:00

  Vuln: phpMyAdmin Debug Backtrace Cross Site Scripting Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin Debug Backtrace Cross Site Scripting Vulnerability

  Tags:  debug phpmyadmin backtrace vulnerability  

• August 30, 2010
• 12:00

  Bugtraq: [ MDVSA-2010:163 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2010:163 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• 12:00

  Bugtraq: [ MDVSA-2010:164 ] phpmyadmin

   » ‎ SecurityFocus Vulnerabilities
  [ MDVSA-2010:164 ] phpmyadmin

  Tags:  bugtraq mdvsa phpmyadmin  

• August 20, 2010
• 19:01

  phpmyadmin335-xss.txt

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin versions 3.3.5 and below and 2.11.10 and below suffer from cross site scripting vulnerabilities.

  Tags:  cross txt phpmyadmin xss  

• 19:00

  phpmyadmin335-xss.txt

   » ‎ Packet Storm Security Exploits
  phpMyAdmin versions 3.3.5 and below and 2.11.10 and below suffer from cross site scripting vulnerabilities.

  Tags:  cross txt phpmyadmin xss  

• August 11, 2010
• 4:38

  phpMyAdmin 3.3.5 XSS Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  phpMyAdmin 3.3.5 XSS Vulnerability

  Tags:  xss vulnerability phpmyadmin  

• July 07, 2010
• 1:00

  phpMyAdmin 2.5.6 Auth Bypass

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  phpMyAdmin 2.5.6 Auth Bypass

  Tags:  auth phpmyadmin bypass  

• May 18, 2010
• 1:00

  phpMyAdmin 2.6.3-pl1 Cross Site Scripting and Full Path

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  phpMyAdmin 2.6.3-pl1 Cross Site Scripting and Full Path

  Tags:  cross phpmyadmin site cross-site-scripting  

• April 19, 2010
• 0:00

  Vuln: phpMyAdmin 'unserialize()' Remote Code Execution Vulnerability

   » ‎ SecurityFocus Vulnerabilities
  phpMyAdmin 'unserialize()' Remote Code Execution Vulnerability

  Tags:  phpmyadmin unserialize remote code-execution vulnerability  

• March 13, 2010
• 6:00

  phpmyadmin 3.3.0 Cross Site Scripting Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  phpmyadmin 3.3.0 Cross Site Scripting Vulnerability

  Tags:  cross phpmyadmin site vulnerability  

• 4:00

  phpmyadmin 3.3.0 Cross Site Scripting Vulnerability

   » ‎ 1337day (was: Inj3ct0r, 1337db)
  phpmyadmin 3.3.0 Cross Site Scripting Vulnerability

  Tags:  cross phpmyadmin site vulnerability  

• March 12, 2010
• 16:00

  phpmyadmin330-xss.txt

   » ‎ Packet Storm Security Recent Files
  phpMyAdmin version 3.3.0 suffers from a cross site scripting vulnerability.

  Tags:  version txt phpmyadmin xss vulnerability  

• 16:00

  phpmyadmin330-xss.txt

   » ‎ Packet Storm Security Exploits
  phpMyAdmin version 3.3.0 suffers from a cross site scripting vulnerability.

  Tags:  version txt phpmyadmin xss vulnerability  

• 14:00

  Bugtraq: [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface!

   » ‎ SecurityFocus Vulnerabilities
  [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface!

  Tags:  database xss phpmyadmin interface  

• March 07, 2010
• 14:00

  Good dork to find unprotected phpmyadmin

   » ‎ darkc0de
  Good dork to find unprotected phpmyadmin

  Tags:  phpmyadmin dork  

• 13:00

  phpMyAdmin

   » ‎ darkc0de
  phpMyAdmin

  Tags:  phpmyadmin  

• February 10, 2010
• 15:01

  phpmyadmin .EDU

   » ‎ darkc0de
  phpmyadmin .EDU

  Tags:  edu phpmyadmin  

• February 09, 2010
• 10:00

  (wwwsrv) phpMyadmin 2.11.5

   » ‎ darkc0de
  (wwwsrv) phpMyadmin 2.11.5

  Tags:  phpmyadmin wwwsrv  

• January 25, 2010
• 9:00

  Default phpmyadmin user found

   » ‎ darkc0de
  Default phpmyadmin user found

  Tags:  user phpmyadmin default  

• January 21, 2010
• 9:00

  phpmyadmin

   » ‎ darkc0de
  phpmyadmin

  Tags:  phpmyadmin  

• 9:00

  phpmyadmin's

   » ‎ darkc0de
  phpmyadmin's

  Tags:  phpmyadmin  

• 8:00

  phpmyadmin pw

   » ‎ darkc0de
  phpmyadmin pw

  Tags:  phpmyadmin  

• January 20, 2010
• 20:00

  shell upload via phpmyadmin

   » ‎ darkc0de
  shell upload via phpmyadmin

  Tags:  upload phpmyadmin shell  

• 10:03

  MDVSA-2010-018.txt

   » ‎ Packet Storm Security Recent Files
  Mandriva Linux Security Advisory 2010-018 - libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors. libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 uses predictable filenames for temporary files, which has unknown impact and attack vectors. scripts/setup.php (aka the setup script) in phpMyAdmin 2.11.x before 2.11.10 calls the unserialize function on the values of the (1) configuration and (2) v[0] parameters, which might allow remote attackers to conduct cross-site request forgery (CSRF) attacks via unspecified vectors. This update provides phpMyAdmin 2.11.10, which is not vulnerable to these issues.

  Tags:  phpmyadmin file php mandriva-linux setup-php setup-script  

• 10:03

  MDVSA-2010-018.txt

   » ‎ Packet Storm Security Advisories
  Mandriva Linux Security Advisory 2010-018 - libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors. libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 uses predictable filenames for temporary files, which has unknown impact and attack vectors. scripts/setup.php (aka the setup script) in phpMyAdmin 2.11.x before 2.11.10 calls the unserialize function on the values of the (1) configuration and (2) v[0] parameters, which might allow remote attackers to conduct cross-site request forgery (CSRF) attacks via unspecified vectors. This update provides phpMyAdmin 2.11.10, which is not vulnerable to these issues.

  Tags:  phpmyadmin file php mandriva-linux setup-php setup-script