GHSA-wj42-52pv-wfj2
Suggest an improvement- Source
- https://github.com/advisories/GHSA-wj42-52pv-wfj2
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wj42-52pv-wfj2/GHSA-wj42-52pv-wfj2.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-wj42-52pv-wfj2
- Aliases
- Published
- 2022-05-01T02:19:36Z
- Modified
- 2023-11-08T03:56:45.993852Z
- Summary
- phpMyAdmin CRLF Injection Vulnerability
- Details
-
CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts.
- Database specific
{ "github_reviewed": true, "severity": "MODERATE", "cwe_ids": [], "nvd_published_at": "2005-11-16T11:02:00Z", "github_reviewed_at": "2023-09-18T23:46:33Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2005-3621
- https://web.archive.org/web/20060514052317/http://securitytracker.com/alerts/2005/Nov/1015213.html
- https://web.archive.org/web/20061015000000*/http://www.novell.com/linux/security/advisories/2005_28_sr.html
- https://www.debian.org/security/2006/dsa-1207
- https://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-6
Affected packages
Packagist / phpmyadmin/phpmyadmin
Package
- Name
- phpmyadmin/phpmyadmin
- Purl
- pkg:composer/phpmyadmin/phpmyadmin