Gentoo Linux Security Advisory 201201-1 - Multiple vulnerabilities were found in phpMyAdmin, the most severe of which allows the execution of arbitrary PHP code. Versions less than 3.4.9 are affected.
a9a0414a3c076b4e97dee46444baeb67c679e1b447f44f4f421858257e7dff0cDebian Linux Security Advisory 2034-1 - Several vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web.
c11128f13b24f32ffcfa461f8a03e8e60f8c0e84d7f0db53e30c1c42f1ab272eMandriva Linux Security Advisory 2010-018 - libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors. libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 uses predictable filenames for temporary files, which has unknown impact and attack vectors. scripts/setup.php (aka the setup script) in phpMyAdmin 2.11.x before 2.11.10 calls the unserialize function on the values of the (1) configuration and (2) v[0] parameters, which might allow remote attackers to conduct cross-site request forgery (CSRF) attacks via unspecified vectors. This update provides phpMyAdmin 2.11.10, which is not vulnerable to these issues.
465d04ba76b44a7e66d801bf38cc94126b1c5b15996fd17727056b7716222fff
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed