FreeBSD VuXML

Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

in the FreeBSD Ports Collection repository, path ports/security/vuxml/vuln.xml
as a local copy
as a local copy, compressed with bzip2

Please report security issues to the FreeBSD Security Team at <security-team@FreeBSD.org>. Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.

phpMyAdmin

phpMyAdmin at FreshPorts.org

Entered	Topic
2010-08-21	phpmyadmin -- Several XSS vulnerabilities
2009-10-13	phpmyadmin -- XSS and SQL injection vulnerabilities
2009-06-30	phpmyadmin -- XSS vulnerability
2009-04-15	phpmyadmin -- insufficient output sanitizing when generating configuration file
2009-03-25	phpmyadmin -- insufficient output sanitizing when generating configuration file
2008-12-11	phpmyadmin -- cross-site request forgery vulnerability
2008-10-31	phpmyadmin -- Cross-Site Scripting Vulnerability
2008-09-23	phpmyadmin -- Cross-Site Scripting Vulnerability
2008-09-17	phpmyadmin -- Code execution vulnerability
2008-07-18	phpmyadmin -- cross site request forgery vulnerabilites
2008-06-28	phpmyadmin -- Cross Site Scripting Vulnerabilities
2008-04-24	phpmyadmin -- Shared Host Information Disclosure
2008-04-24	phpmyadmin -- Username/Password Session File Information Disclosure
2008-03-04	phpmyadmin -- SQL injection vulnerability
2007-11-11	phpmyadmin -- cross-site scripting vulnerability
2007-10-17	phpmyadmin -- cross-site scripting vulnerability
2007-10-16	phpmyadmin -- cross-site scripting vulnerability
2006-10-02	phpmyadmin -- XSRF vulnerabilities
2006-07-03	phpmyadmin -- cross site scripting vulnerability
2006-05-21	phpmyadmin -- XSRF vulnerabilities
2006-04-06	phpmyadmin -- 'set_theme' Cross-Site Scripting
2006-04-06	phpmyadmin -- XSS vulnerabilities
2005-12-07	phpmyadmin -- register_globals emulation "import_blacklist" manipulation
2005-12-07	phpmyadmin -- XSS vulnerabilities
2005-11-16	phpmyadmin -- HTTP Response Splitting vulnerability
2005-10-11	phpmyadmin -- local file inclusion vulnerability
2005-07-31	phpmyadmin -- cross site scripting vulnerability
2005-03-15	phpmyadmin -- increased privilege vulnerability
2005-03-08	phpmyadmin -- arbitrary file include and XSS vulnerabilities
2005-03-08	phpmyadmin -- information disclosure vulnerability
2004-12-15	phpmyadmin -- command execution vulnerability
2004-12-15	phpmyadmin -- file disclosure vulnerability
2004-11-20	phpMyAdmin -- cross-site scripting vulnerabilities
2004-10-20	phpmyadmin -- remote command execution vulnerability
2004-07-02	Remote code injection in phpMyAdmin
2004-02-22	file disclosure in phpMyAdmin