FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  336101
Date:      2013-12-10
Time:      19:45:12Z
Committer: sunpoet

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
1b93f6fe-e1c1-11e2-948d-6805ca0b3d42	phpMyAdmin -- Global variable scope injection The phpMyAdmin development team reports: The import.php script was vulnerable to GLOBALS variable injection. Therefore, an attacker could manipulate any configuration parameter. This vulnerability can be triggered only by someone who logged in to phpMyAdmin, as the usual token protection prevents non-logged-in users from accessing the required form. Discovery 2013-06-30 Entry 2013-06-30 phpMyAdmin ge 4.0 lt 4.0.4.1 http://www.phpmyadmin.net/home_page/security/PMASA-2013-7.php CVE-2013-4729

VuXML ID

Description

1b93f6fe-e1c1-11e2-948d-6805ca0b3d42

phpMyAdmin -- Global variable scope injection

The phpMyAdmin development team reports:

The import.php script was vulnerable to GLOBALS variable injection. Therefore, an attacker could manipulate any configuration parameter.

This vulnerability can be triggered only by someone who logged in to phpMyAdmin, as the usual token protection prevents non-logged-in users from accessing the required form.

Discovery 2013-06-30
Entry 2013-06-30
phpMyAdmin

ge 4.0 lt 4.0.4.1

http://www.phpmyadmin.net/home_page/security/PMASA-2013-7.php
CVE-2013-4729