phpMyAdmin
phpMyAdmin是一个用PHP编写的,可以通过互联网控制和操作MySQL。通过phpMyAdmin可以完全对数据库进行操作,例如建立、复制/删除数据等等。
Website : http://www.phpmyadmin.net/
Chart
- 2012-04-18phpMyAdmin 3.x 'show_config_errors.php'完整路径信息泄露漏洞
- 2012-04-18phpMyAdmin 3.x 数据库名称跨站脚本执行漏洞
- 2012-01-16phpMyAdmin 3.3.X and 3.4.X - Local File Inclusion via XXE Injection
- 2011-12-22phpMyAdmin '$host'变量HTML注入漏洞
- 2011-12-21phpMyAdmin 3.4.9之前版本多个跨站脚本执行漏洞
- 2011-12-16phpMyAdmin 3.4.8之前版本多个跨站脚本执行漏洞
- 2011-11-02phpMyAdmin "simplexml_load_string()"函数信息泄露漏洞
- 2011-10-17phpMyAdmin Setup接口跨站脚本漏洞
- 2011-09-15phpMyAdmin多个HTML注入漏洞
- 2011-08-25phpMyAdmin跟踪功能多个跨站脚本漏洞
- 2011-07-24phpMyAdmin 3.x Conditional Session Manipulation
- 2011-07-12phpMyAdmin3 remote code execute exploit [Not jilei(chicken\'s ribs)]
- 2011-07-11phpMyAdmin Prior to 3.3.10.2 and 3.4.3.1 多个远程漏洞
- 2011-07-09phpMyAdmin 3.x Swekey Remote Code Injection Exploit
- 2011-07-09phpMyAdmin 3.x preg_replace RCE POC
- 2011-07-08phpMyAdmin3 (pma3) Remote Code Execution Exploit
- 2011-07-07phpMyAdmin 3.x Multiple Remote Code Executions
- 2011-07-05phpMyAdmin 3.x 多个安全漏洞
- 2011-06-28phpMyAdmin '$_SESSION'数列未授权访问漏洞
- 2010-12-03phpMyAdmin数据库搜索跨站脚本执行漏洞
- 2010-09-08phpMyAdmin 3.x setup脚本远程跨站脚本漏洞
- 2010-01-19phpMyAdmin unserialize()调用跨站请求伪造漏洞
- 2010-01-15phpMyAdmin创建不安全文件和目录漏洞
- 2009-06-22pmaPWN! - phpMyAdmin Code Injection RCE Scanner & Exploit
- 2009-04-25CVE-2009-1285: phpMyAdmin Code Injection
- 2008-10-26phpMyAdmin Import_Blacklist变量覆盖漏洞
- 2006-12-27phpMyAdmin多个CSRF漏洞