CVE-2012-1600
published 2014-05-14CVE-2012-1600: Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
2.66%
83.8th percentile
Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a function.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | phppgadmin | < phppgadmin 5.0.4-1 (forky) | phppgadmin 5.0.4-1 (forky) |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| phppgadmin_project | phppgadmin | <= 5.0.3 | — |
| phppgadmin_project | phppgadmin | — | — |
| phppgadmin_project | phppgadmin | — | — |
| phppgadmin_project | phppgadmin | — | — |
| phppgadmin_project | phppgadmin | >= 0 < 5.0.4-1 | 5.0.4-1 |
| phppgadmin_project | phppgadmin | >= 0 < 5.0.4-1 | 5.0.4-1 |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_debian4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2012-1600: phppgadmin - Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdm...
vendor_debian·2012·CVSS 4.3
CVE-2012-1600 [MEDIUM] CVE-2012-1600: phppgadmin - Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdm...
Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a function.
Scope: local
forky: resolved (fixed in 5.0.4-1)
sid: resolved (fixed in 5.0.4-1)
trixie: resolved (fixed in 5.0.4-1)
GHSA
GHSA-36cx-v49w-m2cw: Multiple cross-site scripting (XSS) vulnerabilities in functions
ghsa_unreviewed·2022-05-14
CVE-2012-1600 [MEDIUM] CWE-79 GHSA-36cx-v49w-m2cw: Multiple cross-site scripting (XSS) vulnerabilities in functions
Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a function.
OSV
CVE-2012-1600: Multiple cross-site scripting (XSS) vulnerabilities in functions
osv·2014-05-14·CVSS 4.3
CVE-2012-1600 [MEDIUM] CVE-2012-1600: Multiple cross-site scripting (XSS) vulnerabilities in functions
Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a function.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-updates/2012-04/msg00033.htmlhttp://secunia.com/advisories/48574http://sourceforge.net/p/phppgadmin/mailman/message/28783470/http://www.openwall.com/lists/oss-security/2012/03/28/11http://www.openwall.com/lists/oss-security/2012/03/29/6http://www.openwall.com/lists/oss-security/2012/03/30/7http://www.osvdb.org/80870http://www.postgresql.org/message-id/4F6B447C.6080204%40dalibo.comhttp://www.securityfocus.com/bid/52761https://bugzilla.redhat.com/show_bug.cgi?id=808439https://exchange.xforce.ibmcloud.com/vulnerabilities/74440https://github.com/phppgadmin/phppgadmin/commit/74174ad639664b52cc1609ede0af8bc403e98a00https://github.com/phppgadmin/phppgadmin/commit/e92a003624609a445c4cf57c9c3d1fcef0eae47c#diff-0http://lists.opensuse.org/opensuse-updates/2012-04/msg00033.htmlhttp://secunia.com/advisories/48574http://sourceforge.net/p/phppgadmin/mailman/message/28783470/http://www.openwall.com/lists/oss-security/2012/03/28/11http://www.openwall.com/lists/oss-security/2012/03/29/6http://www.openwall.com/lists/oss-security/2012/03/30/7http://www.osvdb.org/80870http://www.postgresql.org/message-id/4F6B447C.6080204%40dalibo.comhttp://www.securityfocus.com/bid/52761https://bugzilla.redhat.com/show_bug.cgi?id=808439https://exchange.xforce.ibmcloud.com/vulnerabilities/74440https://github.com/phppgadmin/phppgadmin/commit/74174ad639664b52cc1609ede0af8bc403e98a00https://github.com/phppgadmin/phppgadmin/commit/e92a003624609a445c4cf57c9c3d1fcef0eae47c#diff-0
2014-05-14
Published