CVSS: 6.1EPSS: 0%CPEs: 55EXPL: 0CVE-2006-3388
https://notcve.org/view.php?id=CVE-2006-3388
06 Jul 2006 — Cross-site scripting (XSS) vulnerability in phpMyAdmin before 2.8.2 allows remote attackers to inject arbitrary web script or HTML via the table parameter. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en phpMyAdmin en versiones anteriores a 2.8.2, que permite a los atacantes remotos inyectar arbitrariamente una secuencia de comandos web o HTML a través del parámetro table. • http://lists.suse.com/archive/suse-security-announce/2006-Nov/0010.html •
CVSS: 6.1EPSS: 9%CPEs: 1EXPL: 2CVE-2006-1803 – phpMyAdmin 2.7 - 'sql.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2006-1803
18 Apr 2006 — Cross-site scripting (XSS) vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to inject arbitrary web script or HTML via the sql_query parameter. • https://www.exploit-db.com/exploits/27632 •
CVSS: 6.1EPSS: 0%CPEs: 53EXPL: 0CVE-2006-1678
https://notcve.org/view.php?id=CVE-2006-1678
10 Apr 2006 — Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.8.0.3 allow remote attackers to inject arbitrary web script or HTML via unknown vectors in unspecified scripts in the themes directory. • http://secunia.com/advisories/19556 •
CVSS: 6.1EPSS: 1%CPEs: 49EXPL: 0CVE-2005-3665
https://notcve.org/view.php?id=CVE-2005-3665
08 Dec 2005 — Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation. • http://secunia.com/advisories/17895 •
CVSS: 6.1EPSS: 12%CPEs: 46EXPL: 3CVE-2005-2869 – phpMyAdmin 2.x - 'error.php' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-2869
08 Sep 2005 — Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4 allow remote attackers to inject arbitrary web script or HTML via (1) the Username to libraries/auth/cookie.auth.lib.php or (2) the error parameter to error.php. • https://www.exploit-db.com/exploits/26199 •
CVSS: 6.1EPSS: 10%CPEs: 42EXPL: 2CVE-2005-0992 – phpMyAdmin 2.x - Convcharset Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-0992
07 Apr 2005 — Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin before 2.6.2-rc1 allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter. • https://www.exploit-db.com/exploits/25330 •
CVSS: 5.3EPSS: 0%CPEs: 36EXPL: 1CVE-2005-0459
https://notcve.org/view.php?id=CVE-2005-0459
17 Feb 2005 — phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote attackers to determine the full path of the web root via a direct request to select_lang.lib.php, which reveals the path in a PHP error message. • http://securitytracker.com/id?1013210 •
CVSS: 7.5EPSS: 11%CPEs: 29EXPL: 2CVE-2004-0129 – phpMyAdmin 2.x - 'Export.php' File Disclosure
https://notcve.org/view.php?id=CVE-2004-0129
03 Mar 2004 — Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in the what parameter. Vulnerabilidad de atravesamiento de directorios en export.php en phpMyAdmin 2.5.5 y anteriores permite a atacantes remotos leer ficheros arbitrarios mediante secuencias .. (punto punto) en el parámetro what • https://www.exploit-db.com/exploits/23640 •
CVSS: 9.8EPSS: 1%CPEs: 13EXPL: 0CVE-2001-1060
https://notcve.org/view.php?id=CVE-2001-1060
31 Jul 2001 — phpMyAdmin 2.2.0rc3 and earlier allows remote attackers to execute arbitrary commands by inserting them into (1) the strCopyTableOK argument in tbl_copy.php, or (2) the strRenameTableOK argument in tbl_rename.php. • http://freshmeat.net/redir/phpmyadmin/8001/url_changelog •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2001-0478
https://notcve.org/view.php?id=CVE-2001-0478
24 May 2001 — Directory traversal vulnerability in phpMyAdmin 2.2.0 and earlier versions allows remote attackers to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script. • http://archives.neohapsis.com/archives/bugtraq/2001-04/0396.html •