VDB
CVE-2013-5029
CVE-2013-5029
PUBLISHED
CVSS 4.300000190734863 MEDIUM
phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php.
EPSS 1.72% · 82.8th percentile
Risk Scores
CVSS 2.0
4.300000190734863
EPSS Score
1.72%
82.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| opensuse | opensuse | 12.3, 12.2 |
| phpmyadmin | phpmyadmin | 3.5.2.1, 3.5.2.2, 3.5.3.0 |
| n/a | n/a | n/a |
Exploit Intelligence
- https://github.com/phpmyadmin/phpmyadmin/commit/240b8332db53dedc27baeec5306dabad3bdece3b (nist-nvd)
- https://github.com/phpmyadmin/phpmyadmin/commit/24d0eb55203b029f250c77d63f2900ffbe099e8b (nist-nvd)
- https://github.com/phpmyadmin/phpmyadmin/commit/da4042fb6c4365dc8187765c3bf525043687c66f (nist-nvd)
- openSUSE-SU-2013:1343 (circl)
- 54488 (circl)
- http://www.phpmyadmin.net/home_page/security/PMASA-2013-10.php (circl)
- https://github.com/phpmyadmin/phpmyadmin/commit/66fe475d4f51b1761719cb0cab360748800373f7 (circl)
Timeline
- Aug 19, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 16, 2023 EPSS Score
References
- openSUSE-SU-2013:1343 vendor-advisory
- https://github.com/phpmyadmin/phpmyadmin/commit/240b8332db53dedc27baeec5306dabad3bdece3b url
- 54488 third-party-advisory
- https://github.com/phpmyadmin/phpmyadmin/commit/24d0eb55203b029f250c77d63f2900ffbe099e8b url
- http://www.phpmyadmin.net/home_page/security/PMASA-2013-10.php url
- https://github.com/phpmyadmin/phpmyadmin/commit/66fe475d4f51b1761719cb0cab360748800373f7 url
- https://github.com/phpmyadmin/phpmyadmin/commit/da4042fb6c4365dc8187765c3bf525043687c66f url
- https://nvd.nist.gov/vuln/detail/CVE-2013-5029 advisory