Oval Definition:oval:org.opensuse.security:def:20171000499
Revision Date:2022-06-30Version:1
Title:CVE-2017-1000499
Description:

phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a CSRF weakness. By deceiving a user to click on a crafted URL, it is possible to perform harmful database operations such as deleting records, dropping/truncating tables etc.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-1000499
openSUSE-SU-2018:0534-1
openSUSE-SU-2018:0536-1
Mitre CVE-2017-1000499
SUSE CVE-2017-1000499
openSUSE-SU-2018:0534-1
openSUSE-SU-2018:0536-1
Platform(s):openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • phpMyAdmin-4.7.8-9 is installed
  • AND phpMyAdmin is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND phpMyAdmin-4.7.8-17 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • phpMyAdmin-5.1.1-1.2 is installed
  • OR phpMyAdmin-apache-5.1.1-1.2 is installed
  • OR phpMyAdmin-lang-5.1.1-1.2 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND phpMyAdmin-4.7.8-17.1 is installed
    • BACK