oss-sec mailing list archives
Re: CVE Request -- phpMyAdmin -- PMASA-2011-3 & PMASA-2011-4
From: Josh Bressers <bressers () redhat com>
Date: Tue, 24 May 2011 07:59:08 -0400 (EDT)
----- Original Message -----
Hello, Josh, Steve, vendors, the following two security flaws have been recently reported against phpMyAdmin: [1] http://www.phpmyadmin.net/home_page/security/PMASA-2011-3.php
This one is an XSS flaw. Use CVE-2011-1940.
[2] http://www.phpmyadmin.net/home_page/security/PMASA-2011-4.php
This one is a URL redirection flaw. Use CVE-2011-1941
References: [3] http://bugs.gentoo.org/show_bug.cgi?id=368495
Thanks. -- JB
Current thread:
- CVE Request -- phpMyAdmin -- PMASA-2011-3 & PMASA-2011-4 Jan Lieskovsky (May 23)
- Re: CVE Request -- phpMyAdmin -- PMASA-2011-3 & PMASA-2011-4 Josh Bressers (May 24)