Download
| Alert*
|
oval:org.secpod.oval:def:1900931
An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected. oval:org.secpod.oval:def:1800617 CVE-2016-9847: Unsafe generation of blowfish secret; All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected Upgrade to phpMyAdmin* 4.6.5, 4.4.15.9*, 4.0.10.18, or newer or apply patch. Reference: CVE-2016-9848: phpinfo information leak value of sensitive cookies; All 4.6.x versions ... oval:org.secpod.oval:def:1800532 CVE-2016-9847: Unsafe generation of blowfish secret. All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected Upgrade to phpMyAdmin* 4.6.5, 4.4.15.9*, 4.0.10.18, or newer or apply patch. Reference: CVE-2016-9848: phpinfo information leak value of sensitive cookies. All 4.6.x versions ... oval:org.secpod.oval:def:1800357 CVE-2016-9847: Unsafe generation of blowfish secret All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected Upgrade to phpMyAdmin* 4.6.5, 4.4.15.9*, 4.0.10.18, or newer or apply patch. Reference CVE-2016-9848: phpinfo information leak value of sensitive cookies All 4.6.x versions , 4 ... |
