Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.6.4-pl4 allow remote malicious users to inject arbitrary web script or HTML via (1) the cookie-based login panel, (2) the title parameter and (3) the table creation dialog.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpmyadmin phpmyadmin 2.5.2 pl1 |
||
phpmyadmin phpmyadmin 2.6.2 pl1 |
||
phpmyadmin phpmyadmin 2.6.1 pl3 |
||
phpmyadmin phpmyadmin 2.6.0 pl3 |
||
phpmyadmin phpmyadmin 2.5.7 pl1 |
||
phpmyadmin phpmyadmin 2.6.4 pl3 |
||
phpmyadmin phpmyadmin 2.5.4 |
||
phpmyadmin phpmyadmin 2.5.3 |
||
phpmyadmin phpmyadmin 2.5.6 rc2 |
||
phpmyadmin phpmyadmin 2.2.0 |
||
phpmyadmin phpmyadmin 2.2.7 pl1 |
||
phpmyadmin phpmyadmin 2.6.3 pl1 |
||
phpmyadmin phpmyadmin 2.5.5 pl1 |