Wind River Support Network

HomeDefectsLIN6-8881
Fixed

LIN6-8881 : Security Advisory - phpMyAdmin - CVE-2014-6300

Created: Dec 1, 2014    Updated: Dec 3, 2018
Resolved Date: Jan 5, 2015
Found In Version: 6.0.0.16
Fix Version: 6.0.0.17
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

Cross-site scripting (XSS) vulnerability in the micro history implementation in phpMyAdmin 4.0.x before 4.0.10.3, 4.1.x before 4.1.14.4, and 4.2.x before 4.2.8.1 allows remote attackers to inject arbitrary web script or HTML, and consequently conduct a cross-site request forgery (CSRF) attack to create a root account, via a crafted URL, related to js/ajax.js.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6300

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube