Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-11441

Опубликовано: 31 мар. 2020
Источник: debian

Описание

phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astring%0D%0A inputs to login form fields causing CRLF sequences to be reflected on an error page. NOTE: the vendor states "I don't see anything specifically exploitable.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
phpmyadminunfixedpackage
phpmyadminnot-affectedjessiepackage

Примечания

  • https://github.com/phpmyadmin/phpmyadmin/issues/16056

  • Not considered a security issue

Связанные уязвимости

ubuntu логотип

CVE-2020-11441

CVSS3: 6.1
ubuntu
около 5 лет назад

** DISPUTED ** phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astring%0D%0A inputs to login form fields causing CRLF sequences to be reflected on an error page. NOTE: the vendor states "I don't see anything specifically exploitable."

nvd логотип

CVE-2020-11441

CVSS3: 6.1
nvd
около 5 лет назад

phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astring%0D%0A inputs to login form fields causing CRLF sequences to be reflected on an error page. NOTE: the vendor states "I don't see anything specifically exploitable.

github логотип

GHSA-j2jx-6pcj-jfpf

github
около 3 лет назад

phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astring%0D%0A inputs to login form fields causing CRLF sequences to be reflected on an error page.