CVE-2010-4480

Related Files

Mandriva Linux Security Advisory 2011-000

Posted Jan 6, 2011

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-000 - error.php in PhpMyAdmin 3.3.8.1 and earlier allows remote attackers to conduct cross-site scripting attacks via a crafted BBcode tag containing @ characters, as demonstrated using [a@url@page]. phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to phpinfo.php, which calls the phpinfo function. This upgrade provides the latest phpmyadmin version for MES5 and patches the version for CS4 to address these vulnerabilities.

tags | advisory, remote, php, vulnerability, xss

systems | linux, mandriva

advisories | CVE-2010-4480, CVE-2010-4481

SHA-256 | de307ba8711ece39eb4d250478511c3cff48445c2d36206a7288d3734e8045fe

Download | Favorite | View

Debian Security Advisory 2139-1

Posted Dec 31, 2010

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2139-1 - Several vulnerabilities have been discovered in phpMyAdmin, a tool to administer MySQL over the web.

tags | advisory, web, vulnerability

systems | linux, debian

advisories | CVE-2010-4329, CVE-2010-4480, CVE-2010-4481

SHA-256 | ebd58aa832d9eb4790d6b098a32d9439781c007adc5d573d12d3c890ef07c600

Download | Favorite | View