FreeBSD : phpMyAdmin -- Multiple vulnerabilities (7721562b-e20a-11e6-b2e2-6805ca0b3d42)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The phpMyAdmin development team reports :

Open redirect

php-gettext code execution

DOS vulnerability in table editing

CSS injection in themes

Cookie attribute injection attack

SSRF in replication

DOS in replication status

See also :

https://www.phpmyadmin.net/security/PMASA-2017-1
https://www.phpmyadmin.net/security/PMASA-2017-2
https://www.phpmyadmin.net/security/PMASA-2017-3
https://www.phpmyadmin.net/security/PMASA-2017-4
https://www.phpmyadmin.net/security/PMASA-2017-5
https://www.phpmyadmin.net/security/PMASA-2017-6
https://www.phpmyadmin.net/security/PMASA-2017-7
http://www.nessus.org/u?02a6362d

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 96742 ()

Bugtraq ID:

CVE ID: CVE-2015-8980

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now