FreeBSD : phpmyadmin -- cross site request forgery vulnerabilities (35e54755-54e4-11dd-ad8b-0030843d3802)

This script is Copyright (C) 2008-2015 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

A phpMyAdmin security announcement :

A logged-in user, if abused into clicking a crafted link or loading an
attack page, would create a database he did not intend to, or would
change his connection character set.

See also :

http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-5
http://www.nessus.org/u?06922bfc

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 33547 (freebsd_pkg_35e5475554e411ddad8b0030843d3802.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now