phpMyAdmin 'import.php' Cross Site Scripting Vulnerability

Bugtraq ID: 65717
Class: Input Validation Error
CVE: CVE-2014-1879
Remote: Yes
Local: No
Published: Feb 15 2014 12:00AM
Updated: Apr 13 2015 09:34PM
Credit: Lane Thames with Tripwire's Vulnerability and Exposure Research Team (VERT)
Vulnerable: phpMyAdmin phpMyAdmin 4.1.6
phpMyAdmin phpMyAdmin 4.1
phpMyAdmin phpMyAdmin 4.0.5
phpMyAdmin phpMyAdmin 4.0.4
phpMyAdmin phpMyAdmin 4.0.3
phpMyAdmin phpMyAdmin 4.0.2
phpMyAdmin phpMyAdmin 4.0.1
phpMyAdmin phpMyAdmin 3.5.2
phpMyAdmin phpMyAdmin 3.5.1
phpMyAdmin phpMyAdmin 3.4.9
phpMyAdmin phpMyAdmin 3.4.8
phpMyAdmin phpMyAdmin 3.4.6
phpMyAdmin phpMyAdmin 3.4.3
phpMyAdmin phpMyAdmin 3.3.8
phpMyAdmin phpMyAdmin 3.3.7
phpMyAdmin phpMyAdmin 3.3.6
phpMyAdmin phpMyAdmin 3.3.5
phpMyAdmin phpMyAdmin 3.3.3 0
phpMyAdmin phpMyAdmin 3.5.8
phpMyAdmin phpMyAdmin 3.5.7
phpMyAdmin phpMyAdmin 3.5.6
phpMyAdmin phpMyAdmin 3.5.5
phpMyAdmin phpMyAdmin 3.5.4
phpMyAdmin phpMyAdmin 3.5.3
phpMyAdmin phpMyAdmin 3.5.0
phpMyAdmin phpMyAdmin 3.4.7.0
phpMyAdmin phpMyAdmin 3.4.5
phpMyAdmin phpMyAdmin 3.4.4
phpMyAdmin phpMyAdmin 3.4.2.0
phpMyAdmin phpMyAdmin 3.4.1
phpMyAdmin phpMyAdmin 3.4.0
phpMyAdmin phpMyAdmin 3.3.9.0
phpMyAdmin phpMyAdmin 3.3.4.0
phpMyAdmin phpMyAdmin 3.3.2.0
phpMyAdmin phpMyAdmin 3.3.1.0
Mandriva Business Server 1 X86 64
Mandriva Business Server 1
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: phpMyAdmin phpMyAdmin 4.1.7


 

Privacy Statement
Copyright 2010, SecurityFocus