FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
c9c46fbf-7b83-11e4-a96e-6805ca0b3d42	phpMyAdmin -- XSS and DoS vulnerabilities The phpMyAdmin development team reports: DoS vulnerability with long passwords. With very long passwords it was possible to initiate a denial of service attack on phpMyAdmin. We consider this vulnerability to be serious. This vulnerability can be mitigated by configuring throttling in the webserver. XSS vulnerability in redirection mechanism. With a crafted URL it was possible to trigger an XSS in the redirection mechanism in phpMyAdmin. We consider this vulnerability to be non critical. Discovery 2014-12-03 Entry 2014-12-04 phpMyAdmin ge 4.2.0 lt 4.2.13.1 http://www.phpmyadmin.net/home_page/security/PMASA-2014-17.php http://www.phpmyadmin.net/home_page/security/PMASA-2014-18.php CVE-2014-9218 CVE-2014-9219

VuXML ID

Description

c9c46fbf-7b83-11e4-a96e-6805ca0b3d42

phpMyAdmin -- XSS and DoS vulnerabilities

The phpMyAdmin development team reports:

DoS vulnerability with long passwords.

With very long passwords it was possible to initiate a denial of service attack on phpMyAdmin.

We consider this vulnerability to be serious.

This vulnerability can be mitigated by configuring throttling in the webserver.

XSS vulnerability in redirection mechanism.

With a crafted URL it was possible to trigger an XSS in the redirection mechanism in phpMyAdmin.

We consider this vulnerability to be non critical.

Discovery 2014-12-03
Entry 2014-12-04
phpMyAdmin

ge 4.2.0 lt 4.2.13.1

http://www.phpmyadmin.net/home_page/security/PMASA-2014-17.php
http://www.phpmyadmin.net/home_page/security/PMASA-2014-18.php
CVE-2014-9218
CVE-2014-9219