Описание
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php.
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-5029
- https://github.com/phpmyadmin/phpmyadmin/commit/240b8332db53dedc27baeec5306dabad3bdece3b
- https://github.com/phpmyadmin/phpmyadmin/commit/24d0eb55203b029f250c77d63f2900ffbe099e8b
- https://github.com/phpmyadmin/phpmyadmin/commit/66fe475d4f51b1761719cb0cab360748800373f7
- https://github.com/phpmyadmin/phpmyadmin/commit/da4042fb6c4365dc8187765c3bf525043687c66f
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00013.html
- http://secunia.com/advisories/54488
- http://www.phpmyadmin.net/home_page/security/PMASA-2013-10.php
Связанные уязвимости
ubuntu
больше 12 лет назад
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php.
nvd
больше 12 лет назад
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php.
debian
больше 12 лет назад
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to byp ...