ByteOS Network

NVD Vulnerability Details :

CVE-2014-125094

Modified

Source-cna@vuldb.com

Published At-06 Apr, 2023 | 21:15

Updated At-17 May, 2024 | 00:58

A vulnerability classified as problematic was found in phpMiniAdmin up to 1.8.120510. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.9.140405 is able to address this issue. It is recommended to upgrade the affected component. The identifier VDB-225001 was assigned to this vulnerability.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	6.1	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Secondary	3.1	3.5	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Secondary	2.0	4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:P/A:N

CPE Matches

phpminiadmin_project>>phpminiadmin>>Versions before 1.9.140405(exclusive)

cpe:2.3:a:phpminiadmin_project:phpminiadmin:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Primary	cna@vuldb.com

References

Hyperlink	Source	Resource
https://github.com/osalabs/phpminiadmin/blob/master/changelog.md	cna@vuldb.com	Release Notes
https://vuldb.com/?ctiid.225001	cna@vuldb.com	Permissions Required VDB Entry
https://vuldb.com/?id.225001	cna@vuldb.com	Third Party Advisory VDB Entry

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History