FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 03:12:49 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
81b4c118-c586-11e4-8495-6805ca0b3d42	phpMyAdmin -- Risk of BREACH attack due to reflected parameter The phpMyAdmin development team reports: Risk of BREACH attack due to reflected parameter. With a large number of crafted requests it was possible to infer the CSRF token by a BREACH attack. Mitigation factor: this vulnerability can only be exploited in the presence of another vulnerability that allows the attacker to inject JavaScript into victim's browser. Discovery 2015-03-04 Entry 2015-03-08 phpMyAdmin ge 4.3.0 lt 4.3.11.1 http://www.phpmyadmin.net/home_page/security/PMASA-2015-1.php CVE-2015-2206

VuXML ID

Description

81b4c118-c586-11e4-8495-6805ca0b3d42

phpMyAdmin -- Risk of BREACH attack due to reflected parameter

The phpMyAdmin development team reports:

Risk of BREACH attack due to reflected parameter.

With a large number of crafted requests it was possible to infer the CSRF token by a BREACH attack.

Mitigation factor: this vulnerability can only be exploited in the presence of another vulnerability that allows the attacker to inject JavaScript into victim's browser.

Discovery 2015-03-04
Entry 2015-03-08
phpMyAdmin

ge 4.3.0 lt 4.3.11.1

http://www.phpmyadmin.net/home_page/security/PMASA-2015-1.php
CVE-2015-2206