Oval Definition:oval:org.opensuse.security:def:20165705
Revision Date:2022-06-30Version:1
Title:CVE-2016-5705
Description:

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.7 and 4.6.x before 4.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) server-privileges certificate data fields on the user privileges page, (2) an "invalid JSON" error message in the error console, (3) a database name in the central columns implementation, (4) a group name, or (5) a search name in the bookmarks implementation.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-5705
Mitre CVE-2016-5705
SUSE CVE-2016-5705
openSUSE-SU-2016:1699-1
openSUSE-SU-2016:1700-1
Platform(s):openSUSE 13.1
openSUSE 13.2
openSUSE Leap 42.1
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND phpMyAdmin-4.4.15.7-60.1 is installed
    • Definition Synopsis
  • openSUSE 13.2 is installed
  • AND phpMyAdmin-4.4.15.7-36.1 is installed
    • Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • phpMyAdmin-4.4.15.7-22.1 is installed
  • AND phpMyAdmin is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND phpMyAdmin-4.6.5.2-1.1 is installed
    • BACK