CVE-2007-5589: XSS
First published: Tue Oct 16 2007(Updated: )
Description of problem: PhpMyAdmin 2.11.1.1 was released on October 15th, 2007 and Fedora Development hangs still around the older 2.11.0. And the release 2.11.1.1 fixes a security issue: PMASA-2007-5 Version-Release number of selected component (if applicable): phpMyAdmin-2.11.0-1 Expected results: phpMyAdmin-2.11.1.1-1 or newer ;-) Additional info: A simple version bump did the trick for me.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| phpMyAdmin phpMyAdmin | <=2.11.1.1 | |
| redhat/2.11.2.2 | <1. | 1. |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.digitrustgroup.com/advisories/TDG-advisory071015a.html
- http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin/branches/MAINT_2_11_1/phpMyAdmin/ChangeLog?r1=10796&r2=10795&pathrev=10796
- http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin?view=rev&revision=10796
- http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2007-6
- http://secunia.com/advisories/27246
- https://bugzilla.redhat.com/show_bug.cgi?id=333661
- http://www.debian.org/security/2007/dsa-1403
- https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00040.html
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:199
- http://www.securityfocus.com/bid/26301
- http://secunia.com/advisories/27506
- http://secunia.com/advisories/27595
- http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.html
- http://secunia.com/advisories/29323
- http://osvdb.org/37939
- http://www.vupen.com/english/advisories/2007/3535
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37292
- https://access.redhat.com/security/cve/CVE-2007-5386
- http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin?view=rev&revision=10748
- http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin?view=rev&revision=10749
- https://access.redhat.com/security/cve/CVE-2007-5589
- http://cvs.fedoraproject.org/viewcvs/devel/phpMyAdmin/
Frequently Asked Questions
What is the severity of CVE-2007-5589?
CVE-2007-5589 is classified as a critical severity vulnerability that affects certain versions of phpMyAdmin.
How do I fix CVE-2007-5589?
To fix CVE-2007-5589, you should upgrade phpMyAdmin to version 2.11.1.1 or later.
Which versions of phpMyAdmin are affected by CVE-2007-5589?
CVE-2007-5589 affects phpMyAdmin versions prior to 2.11.1.1.
Is CVE-2007-5589 related to any other vulnerabilities?
Yes, CVE-2007-5589 is related to PMASA-2007-5, which addresses a security issue in older versions.
What are the consequences of not addressing CVE-2007-5589?
Failure to address CVE-2007-5589 can lead to unauthorized access and potential data breaches in applications using affected phpMyAdmin versions.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2007-5589
- agent/software-canonical-lookup
- agent/trending
- agent/tags
- agent/source
- vendor/phpmyadmin
- canonical/phpmyadmin phpmyadmin
- version/phpmyadmin phpmyadmin/2.11.1.1
- package-manager/redhat