NVD

Id
39078  
Name
CVE-2013-3241  
Description
export.php (aka the export script) in phpMyAdmin 4.x before 4.0.0-rc3 overwrites global variables on the basis of the contents of the POST superglobal array, which allows remote authenticated users to inject values via a crafted request.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2013-04-25  
Modified Date
2013-11-18  
Seq
2013-3241  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
200058 39078 CVE-2013-3241 20130424 [waraxe-2013-SA#103] - Multiple Vulnerabilities in phpMyAdmin  View
200059 39078 CVE-2013-3241 http://www.phpmyadmin.net/home_page/security/PMASA-2013-5.php  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
20918 JVNDB-2013-002493 phpMyAdmin の export.php における値を挿入される脆弱性 phpMyAdmin の export.php (別名 export script) は、POST スーパーグローバル配列 (superglobal array) の内容に基づいてグローバル変数を上書きするため、値を挿入される脆弱性が存在します。 CVE-2013-3241 63183 CVE-2013-3241 39078 4 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-002493.html 2013-04-24 2013-04-30 View