projects / scm / bb / tizen-distro.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 08c34f2) | patch
phpmyadmin: fix for Security Advisory CVE-2014-5273
authorRoy Li <rongqing.li@windriver.com>
Thu, 30 Oct 2014 05:37:25 +0000 (13:37 +0800)
committerPatrick Ohly <patrick.ohly@intel.com>
Fri, 9 Jan 2015 17:19:13 +0000 (09:19 -0800)
commit16cc2420e648d0cb78af58de502c92a1f7e6c064
tree3adb3acaf4ff5100835ec7114fcbae8f8f2b9b6ctree | snapshot
parent08c34f2cbeea75b1fb0ccab4e23afc4483c8153ccommit | diff
phpmyadmin: fix for Security Advisory CVE-2014-5273

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x
before 4.0.10.2, 4.1.x before 4.1.14.3, and 4.2.x before 4.2.7.1 allow
remote authenticated users to inject arbitrary web script or HTML via the
(1) browse table page, related to js/sql.js; (2) ENUM editor page, related
to js/functions.js; (3) monitor page, related to js/server_status_monitor.js;
(4) query charts page, related to js/tbl_chart.js; or (5) table relations
page, related to libraries/tbl_relation.lib.php.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5273

(From meta-openembedded rev: 59b1d88761ed98a2bd6a4ab4a68962773a473463)

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Patrick Ohly <patrick.ohly@intel.com>
meta-openembedded/meta-webserver/recipes-php/phpmyadmin/phpmyadmin/0001-bug-4504-security-Self-XSS-in-query-charts.patch [new file with mode: 0644] blob
meta-openembedded/meta-webserver/recipes-php/phpmyadmin/phpmyadmin_4.2.7.bb diff | blob | history
Domain: SCM / BB;