MDVSA-2013:203 -- Mandriva phpmyadminID: oval:org.secpod.oval:def:1300216 | Date: (C)2013-10-08 (M)2022-10-10 |
Class: PATCH | Family: unix |
Multiple vulnerabilities has been discovered and corrected in phpmyadmin: * XSS due to unescaped HTML Output when executing a SQL query . * 5 XSS vulnerabilities in setup, chart display, process list, and logo link. If a crafted version.json would be presented, an XSS could be introduced . * Full path disclosure vulnerabilities . * Self-XSS due to unescaped HTML output in schema export . * SQL injection vulnerabilities, producing a privilege escalation . This upgrade provides the latest phpmyadmin version to address these vulnerabilities.
Platform: |
Mandriva Enterprise Server 5.2 |