Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.6.4-pl4 allow remote malicious users to inject arbitrary web script or HTML via (1) the cookie-based login panel, (2) the title parameter and (3) the table creation dialog.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpmyadmin phpmyadmin 2.5.4 |
||
phpmyadmin phpmyadmin 2.5.5_pl1 |
||
phpmyadmin phpmyadmin 2.6.4_pl3 |
||
phpmyadmin phpmyadmin 2.5.6_rc2 |
||
phpmyadmin phpmyadmin 2.5.7_pl1 |
||
phpmyadmin phpmyadmin 2.5.2_pl1 |
||
phpmyadmin phpmyadmin 2.5.3 |
||
phpmyadmin phpmyadmin 2.6.2_pl1 |
||
phpmyadmin phpmyadmin 2.6.3_pl1 |
||
phpmyadmin phpmyadmin 2.2.0 |
||
phpmyadmin phpmyadmin 2.2.7_pl1 |
||
phpmyadmin phpmyadmin 2.6.0_pl3 |
||
phpmyadmin phpmyadmin 2.6.1_pl3 |