Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1678

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2006-1678
Last Modified 07 Mar 2011 09:33:34
Published 10 Apr 2006 08:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1678

Summary

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.8.0.3 allow remote attackers to inject arbitrary web script or HTML via unknown vectors in unspecified scripts in the themes directory.

Vulnerable Systems

Application

  • Phpmyadmin 2.0.0

  • Phpmyadmin 2.0.1

  • Phpmyadmin 2.0.2

  • Phpmyadmin 2.0.3

  • Phpmyadmin 2.0.4

  • Phpmyadmin 2.0.5

  • Phpmyadmin 2.1.0

  • Phpmyadmin 2.1.1

  • Phpmyadmin 2.1.2

  • Phpmyadmin 2.2.0

  • Phpmyadmin 2.2.0 Pre1

  • Phpmyadmin 2.2.0 Pre2

  • Phpmyadmin 2.2.0 Rc1

  • Phpmyadmin 2.2.0 Rc2

  • Phpmyadmin 2.2.0 Rc3

  • Phpmyadmin 2.2.2

  • Phpmyadmin 2.2.3

  • Phpmyadmin 2.2.4

  • Phpmyadmin 2.2.5

  • Phpmyadmin 2.2.6

  • Phpmyadmin 2.3.1

  • Phpmyadmin 2.3.2

  • Phpmyadmin 2.4.0

  • Phpmyadmin 2.5.0

  • Phpmyadmin 2.5.1

  • Phpmyadmin 2.5.2

  • Phpmyadmin 2.5.3

  • Phpmyadmin 2.5.4

  • Phpmyadmin 2.5.5

  • Phpmyadmin 2.5.5 Pl1

  • Phpmyadmin 2.5.5 Rc1

  • Phpmyadmin 2.5.5 Rc2

  • Phpmyadmin 2.5.6 Rc1

  • Phpmyadmin 2.5.7

  • Phpmyadmin 2.5.7 Pl1

  • Phpmyadmin 2.6.0 Pl1

  • Phpmyadmin 2.6.0 Pl2

  • Phpmyadmin 2.6.0 Pl3

  • Phpmyadmin 2.6.1

  • Phpmyadmin 2.6.1 Pl1

  • Phpmyadmin 2.6.1 Pl3

  • Phpmyadmin 2.6.1 Rc1

  • Phpmyadmin 2.6.2

  • Phpmyadmin 2.6.2 Rc1

  • Phpmyadmin 2.6.3 Pl1

  • Phpmyadmin 2.6.4 Pl1

  • Phpmyadmin 2.6.4 Pl3

  • Phpmyadmin 2.6.4 Pl4

  • Phpmyadmin 2.6.4 Rc1

  • Phpmyadmin 2.7.0

  • Phpmyadmin 2.7.0 Beta1

  • Phpmyadmin 2.7.0 Pl1

  • Phpmyadmin 2.7.0 Pl2


References

CONFIRM - http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-1

SECUNIA - 19556

VUPEN - ADV-2006-1263

BID - 17390

XF - phpmyadmin-themes-xss(25689)

OSVDB - 24450

SUSE - SUSE-SR:2006:009

DEBIAN - DSA-1207

SECUNIA - 22781

SECUNIA - 19897


Last Updated: 27 May 2016 10:42:09