504034 : vulnerable phpMyAdmin version: 3.3.2

Risk 4 : Web Services

A remote attacker could execute arbitrary commands, conduct cross-site scripting attacks, disclose sensitive information, read arbitrary files, perform unauthorized actions, bypass clickJacking protection, or perform local file inclusion attacks.

phpMyAdmin is a web-based administration interface for MySQL.

Cross-Site Scripting Vulnerabilities Fixed in 4.0.10.2, 4.1.14.3, and 4.2.7.1 08/26/14 CVE 2014-5273 CVE 2014-5274 phpMyAdmin before 4.0.10.2, 4.1.1432, and 4.2.7.1 is prone to cross-site scripting attacks. The vulnerabilities exist due to flaw in browse table, ENUM editor, monitor, query charts, table relations pages and view operations pages. Multiple Vulnerabilities Fixed in phpMyAdmin version 4.0.10.1, 4.1.14.2, and 4.2.6 07/24/14 CVE 2014-4954 CVE 2014-4955 CVE 2014-4986 CVE 2014-4987 phpMyAdmin before 4.0.10.1, 4.1.14.2, and 4.2.6 is prone to multiple vulnerabilities, which can be exploited to conduct cross-site scripting (XSS) attacks and to bypass intended access restrictions. Multiple Vulnerabilities Fixed in phpMyAdmin version 4.0.10.1, 4.1.14.1, and 4.2.4 07/24/14 CVE 2014-1879 CVE 2014-4348 CVE 2014-4349 phpMyAdmin before 4.0.10.1, 4.1.14.1, and 4.2.4 is prone to multiple vulnerabilities, which can be exploited to conduct cross-site scripting (XSS) attacks. The vulnerabilities exist due to unescaped HTML output in import, recent/favorite tables navigation, and navigation items hiding feature. Multiple Vulnerabilities Fixed in phpMyAdmin version 3.5.8.2 and 4.0.4.2 07/30/13 CVE 2013-4996 CVE 2013-4997 CVE 2013-5001 CVE 2013-5003 phpMyAdmin version prior to 3.5.8.2 and 4.0.4.2 is prone to multiple vulnerabilities because the application fails to sanitize input passed via: the "User", "Host", "db", and "Command" parameters in the Status Monitor view. link to an object before being used to display the contents of a table. the "scale" POST parameter to pmd_pdf.php and via the pdf_page_number POST parameter to schema_export.php Two Vulnerabilities Fixed in phpMyAdmin version 4.0.0-rc3 05/21/13 CVE 2013-3240 CVE 2013-3241 Two vulnerabilities were fixed in phpMyAdmin version 4.0.0-rc3. The vulnerabilities are: Local file inclusion vulnerability due to input passed not correctly validated in the Export feature. A possible global variables overwrite in export.php due to an export script which generates global variables from $_POST superglobal. Locally Saved SQL Dump File Multiple File Extension Remote Code Execution 05/21/13 CVE 2013-3239 phpMyAdmin versions 3.5.x and prior and 4.0.0 are prone to file extension remote code execution because the application can be configured to save a double extension file like foobar.php.sql, on the web server, via its SaveDir directive. Apache webserver might treat this saved file as a ".php" script and may lead to remote code execution. Cross-site Scripting Vulnerabilities Fixed in phpMyAdmin version 3.5.8 05/21/13 CVE 2013-1937 phpMyAdmin prior to version 3.5.8 is prone to cross-site scripting vulnerability because of unescaped HTML output in GIS visualization page. A Vulnerability is Fixed in phpMyAdmin version 3.5.3 05/21/13 CVE 2012-5368 phpMyAdmin prior to version 3.5.3 is prone to man-in-the-middle attack. When fetching the version information from a non-SSL site, a piece of JavaScript is fetched from the phpmyadmin.net website in non-SSL mode which could lead to further attacks. Multiple Cross-site Scripting Vulnerabilities Fixed in phpMyAdmin version 3.5.3 05/21/13 CVE 2012-5339 phpMyAdmin prior to version 3.5.3 is prone to multiple cross-site scripting vulnerability because of unescaped HTML output in Trigger, Procedure and Event pages. preg_replace Function Code Injection 05/20/13 CVE 2013-3238 phpMyAdmin versions 3.5.x and prior and 4.0.0 are prone to a remote PHP code-injection vulnerability. The vulnerability exists because input passed to preg_replace() function is not properly sanitized when using the "Replace table prefix" feature. An attacker can exploit this issue to inject and execute arbitrary PHP code in the context of the webserver process. XML Entity References Information Disclosure Vulnerability 11/15/11 CVE 2011-4107 phpMyAdmin before 3.4.7.1 and 3.3.10.5 is prone to a vulnerability, which can be exploited by malicious users to disclose potentially sensitive information. The vulnerability is caused due to an error within the libraries when processing XML data, which can be exploited to e.g. disclose contents of certain local files and perform certain actions on the local network by sending specially crafted XML data including external entity references. Multiple Script Insertion Vulnerabilities fixed in 3.4.4 08/31/11 CVE 2011-3181 phpMyAdmin before 3.3.10.4 and 3.4.4 are prone to multiple vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks. Certain input passed to table, column, and index names is not properly sanitised before being used in the Tracking feature. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed. Multiple Vulnerabilities fixed in 3.4.3.2 07/29/11 CVE 2011-2642 CVE 2011-2643 CVE 2011-2718 CVE 2011-2719 phpMyAdmin before 3.3.10.3 and 3.4.3.2 is prone to multiple vulnerabilities, which can be exploited by malicious users to conduct cross-site scripting attacks and potentially compromise a vulnerable system and by malicious people to disclose potentially sensitive information and potentially compromise a vulnerable system. Multiple Vulnerabilities fixed in 3.4.3.1 07/13/11 CVE 2011-2505 CVE 2011-2506 CVE 2011-2507 CVE 2011-2508 phpMyAdmin before 3.3.10.2 and 3.4.3.1 is prone to multiple vulnerabilities, which can be exploited by malicious users to disclose sensitive information and by malicious users and malicious people to compromise a vulnerable system. Redirection Weakness and Script Insertion Vulnerability 05/31/11 CVE 2011-1940 phpMyAdmin before 3.4.1 is prone to a weakness and a vulnerability, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct spoofing attacks. Bookmark Security Bypass Vulnerability 03/01/11 CVE 2011-0987 phpMyAdmin before 2.11.11.3 and 3.3.9.2 is prone to a security-bypass vulnerability that affects bookmarks. Successfully exploiting this issue allows a remote attacker to bypass certain security restrictions and perform unauthorized actions. Database Search Cross Site Scripting Vulnerability 12/13/10 CVE 2010-4329 phpMyAdmin before 3.3.8.1 and 2.11.11.1 is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. Debug Backtrace Cross Site Scripting Vulnerability 09/16/10 CVE 2010-2958 phpMyAdmin before 3.3.6 is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. Multiple Cross Site Scripting Vulnerabilities 09/02/10 CVE 2010-3056 phpMyAdmin 2.11.x prior to 2.11.10.1 and phpMyAdmin 3.x prior to 3.3.5.1 are prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks. db Parameter Cross Site Scripting Vulnerability 07/28/09 phpMyAdmin 3.3.0-dev and prior are prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.

The cross-site scripting vulnerabilities fixed in 4.0.10.2, 4.1.14.3, and 4.2.7.1 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2014-8.php PMASA-2014-8 and http://www.phpmyadmin.net/home_page/security/PMASA-2014-9.php PMASA-2014-9. The multiple vulnerabilities fixed in phpMyAdmin version 4.0.10.1, 4.1.14.2, and 4.2.6 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2014-4.php PMASA-2014-4, http://www.phpmyadmin.net/home_page/security/PMASA-2014-5.php PMASA-2014-5, http://www.phpmyadmin.net/home_page/security/PMASA-2014-6.php PMASA-2014-6, and http://www.phpmyadmin.net/home_page/security/PMASA-2014-7.php PMASA-2014-7. The multiple vulnerabilities fixed in phpMyAdmin version 4.0.10.1, 4.1.14.1, and 4.2.4 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2014-1.php PMASA-2014-1, http://www.phpmyadmin.net/home_page/security/PMASA-2014-2.php PMASA-2014-2, and http://www.phpmyadmin.net/home_page/security/PMASA-2014-3.php PMASA-2014-3. The multiple vulnerabilities fixed in phpMyAdmin version 3.5.8.2 and 4.0.4.2 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2013-9.php PMASA-2013-9, http://www.phpmyadmin.net/home_page/security/PMASA-2013-13.php PMASA-2013-13, and http://www.phpmyadmin.net/home_page/security/PMASA-2013-15.php PMASA-2013-15. The two vulnerabilities fixed in phpMyAdmin version 4.0.0-rc3 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2013-4.php PMASA-2013-4 and http://www.phpmyadmin.net/home_page/security/PMASA-2013-5.php PMASA-2013-5. The locally saved SQL dump file multiple file extension remote code execution was reported in http://www.phpmyadmin.net/home_page/security/PMASA-2013-3.php PMASA-2013-3. The cross-site scripting vulnerabilities fixed in phpMyAdmin version 3.5.8 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2013-1.php PMASA-2013-1. The vulnerability fixed in phpMyAdmin version 3.5.3 was reported in http://www.phpmyadmin.net/home_page/security/PMASA-2012-7.php PMASA-2012-7. The multiple cross-site scripting vulnerabilities fixed in phpMyAdmin version 3.5.3 were reported in http://www.phpmyadmin.net/home_page/security/PMASA-2012-6.php PMASA-2012-6. The preg_replace function code injection vulnerability was reported in http://www.phpmyadmin.net/home_page/security/PMASA-2013-2.php PMASA-2013-2. The XML Entity References Information Disclosure vulnerability was reported in http://secunia.com/advisories/46447/ Secunia Advisory SA46447. The multiple Script Insertion vulnerabilities fixed in 3.4.4 were reported in http://secunia.com/advisories/45709/ Secunia Advisory SA45709. The multiple vulnerabilities fixed in 3.4.3.2 were reported in http://secunia.com/advisories/45365/ Secunia Advisory SA45365. The multiple vulnerabilities fixed in 3.4.3.1 were reported in http://secunia.com/advisories/45139/ Secunia Advisory SA45139. The Redirection Weakness and Script Insertion Vulnerability was reported in http://secunia.com/advisories/44641/ Secunia Advisory SA44641. The Bookmark Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/46359/ Bugtraq ID 46359. The Database Search Cross Site Scripting vulnerability was reported in http://www.securityfocus.com/bid/45100/ Bugtraq ID 45100. The Debug Backtrace Cross Site Scripting vulnerability was reported in http://www.securityfocus.com/bid/42874/ Bugtraq ID 42874. The multiple Cross Site Scripting vulnerabilities were reported in http://www.securityfocus.com/bid/42584/ Bugtraq ID 42584. The db Parameter Cross Site Scripting vulnerability was reported in http://www.securityfocus.com/bid/35531/ Bugtraq ID 35531.

Solution:

phpMyAdmin should be http://www.phpmyadmin.net/home_page/downloads.php upgraded to 4.0.10.2 for version 4.0.x, 4.1.14.3 for 4.1.x, or 4.2.7.1 for 4.2.x.

References:
CVSS Information:
Low Attack Complexity, Partial Confidentiality Impact, Partial Integrity Impact, Complete Availability Impact
Credit:
Saint Coorporation : 2010-03-24
New Search
Keywords
Risk Factor
Start Date
End Date
Browse