CVE-2009-1150

EPSS 0.75% · P73 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-1150

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in the export page (display_export.lib.php) in phpMyAdmin 2.11.x before 2.11.9.5 and 3.x before 3.1.3.1 allow remote attackers to inject arbitrary web script or HTML via the pma_db_filename_template cookie.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

phpMyAdmin 'export page' 跨站脚本攻击漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

phpMyAdmin是一个免费的MySQL数据管理工具软件，PHP写的旨在处理在万维网和操作MySQL。 phpMyAdmin的输出页(display_export.lib.php)中存在多个跨站脚本攻击漏洞。远程攻击者可以借助pma_db_filename_template cookie，注入任意web脚本或HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-1150

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-1150

请登录查看更多情报信息。

http://www.phpmyadmin.net/home_page/security/PMASA-2009-2.phpx_refsource_CONFIRM
http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin/trunk/phpMyAdmin/libraries/display_export.lib.php?r1=11986&r2=12302&pathrev=12302x_refsource_CONFIRM
http://secunia.com/advisories/34642third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35585third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/35635third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/34430third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/34251vdb-entryx_refsource_BID
http://www.debian.org/security/2009/dsa-1824vendor-advisoryx_refsource_DEBIAN
http://security.gentoo.org/glsa/glsa-200906-03.xmlvendor-advisoryx_refsource_GENTOO
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.htmlvendor-advisoryx_refsource_SUSE
https://nvd.nist.gov/vuln/detail/CVE-2009-1150

Same Patch Batch · n/a · 2009-03-26 · 13 CVEs total

CVE-2008-6528		Tmax Soft JEUS Alternate Data Stream 源代码信息泄露漏洞
CVE-2009-1148		phpMyAdmin BLOB Streaming 多个输入验证漏洞
CVE-2009-1149		phpMyAdmin BLOB Streaming 多个输入验证漏洞
CVE-2009-1151		phpMyAdmin setup.php脚本PHP代码注入漏洞
CVE-2009-1152		Siemens Gigaset SE461 WiMAX路由器远程拒绝服务漏洞
CVE-2008-6529		eZoneScripts Living Local 'listtest.php' 跨站脚本攻击漏洞
CVE-2008-6530		eZoneScripts Living Local php script 'editimage.php'远程任意文件上传漏洞
CVE-2008-6531		Atlassian JIRA 远程安全绕过漏洞
CVE-2008-6532		Drupal跨站请求伪造漏洞
CVE-2008-6533		Drupal Deleted Input Format 跨站脚本攻击漏洞
CVE-2008-6534		Vwsolutions Null FTP Server 'SITE'命令任意指令注入漏洞
CVE-2008-6535		PayPal eStores 'admin/settings.php'权限许可和访问控制漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-1150

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-1150

I. Basic Information for CVE-2009-1150

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-1150

III. Intelligence Information for CVE-2009-1150

Same Patch Batch · n/a · 2009-03-26 · 13 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-1150

Leave a comment