{"id":"MGASA-2014-0344","summary":"Updated phpmyadmin package fixes XSS vulnerabilities","details":"Updated phpmyadmin package fixes security vulnerabilities:\n\nIn phpMyAdmin before 4.1.14.3, multiple XSS vulnerabilities exist in browse\ntable, ENUM editor, monitor, query charts and table relations pages\n(CVE-2014-5273).\n\nIn phpMyAdmin before 4.1.14.3, with a crafted view name it is possible to\ntrigger an XSS when dropping the view in view operation page (CVE-2014-5274).\n","modified":"2026-04-16T01:46:00.668549305Z","published":"2014-08-21T09:36:13Z","upstream":["CVE-2014-5273","CVE-2014-5274"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2014-0344.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=13935"},{"type":"WEB","url":"http://www.phpmyadmin.net/home_page/security/PMASA-2014-8.php"},{"type":"WEB","url":"http://www.phpmyadmin.net/home_page/security/PMASA-2014-9.php"}],"affected":[{"package":{"name":"phpmyadmin","ecosystem":"Mageia:3","purl":"pkg:rpm/mageia/phpmyadmin?arch=source&distro=mageia-3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.1.14.3-1.mga3"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0344.json"}},{"package":{"name":"phpmyadmin","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/phpmyadmin?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.1.14.3-1.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2014-0344.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}