Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2012-4579

EPSS 0.18% · P40
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-4579

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via a Table Operations (1) TRUNCATE or (2) DROP link for a crafted table name, (3) the Add Trigger popup within a Triggers page that references crafted table names, (4) an invalid trigger-creation attempt for a crafted table name, (5) crafted data in a table, or (6) a crafted tooltip label name during GIS data visualization, a different issue than CVE-2012-4345.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
phpMyAdmin 多个跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
phpMyAdmin 3.5.2.2之前的3.5.x版本中存在多个跨站脚本(XSS)漏洞。远程认证用户可利用这些漏洞通过表操作(1)TRUNCATE或(2)DROP连接特制的表名(3)添加触发弹出特制表名的触发页面(4)尝试特制的表名中无效触发创建(5)表中特制的数据或(6)GIS数据可视化期间特制的工具提示标签,注入任意web脚本或HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2012-4579

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2012-4579

登录查看更多情报信息。

Same Patch Batch · n/a · 2012-08-21 · 17 CVEs total

CVE-2012-2190IBM WAS GSKit 加密问题漏洞
CVE-2012-2980Samsung/HTC 信息泄露漏洞
CVE-2012-2985CuteSoft Cute Editor 跨站脚本漏洞
CVE-2012-3293IBM WebSphere Application Server 跨站脚本漏洞
CVE-2012-3301IBM Lotus Domino HTTP 响应拆分漏洞
CVE-2012-3302IBM Lotus Domino HTTP 跨站脚本漏洞
CVE-2012-4363Adobe Reader 多个未明安全漏洞
CVE-2012-4577Linux firmware image 加密问题漏洞
CVE-2012-4219phpMyAdmin ‘show_config_errors.php’信息泄露漏洞
CVE-2012-4578FreeBSD 加密问题漏洞
CVE-2012-4163Adobe Flash Player 任意代码执行漏洞
CVE-2012-4164Adobe Flash Player 拒绝服务漏洞
CVE-2012-4165Adobe Flash Player 任意代码执行漏洞
CVE-2012-4167Adobe Flash Player 数字错误漏洞
CVE-2012-4168Adobe Flash Player 安全漏洞
CVE-2012-4345phpMyAdmin 多个跨站脚本漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2012-4579

No comments yet

Leave a comment