Cross-site scripting (XSS) vulnerability in the view operations page in phpMyAdmin 4.1.x prior to 4.1.14.3 and 4.2.x prior to 4.2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name, related to js/functions.js.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
phpmyadmin phpmyadmin 4.1.14 |
||
phpmyadmin phpmyadmin 4.1.2 |
||
phpmyadmin phpmyadmin 4.1.9 |
||
phpmyadmin phpmyadmin 4.1.4 |
||
phpmyadmin phpmyadmin 4.1.5 |
||
phpmyadmin phpmyadmin 4.1.6 |
||
phpmyadmin phpmyadmin 4.1.7 |
||
phpmyadmin phpmyadmin 4.1.1 |
||
phpmyadmin phpmyadmin 4.1.10 |
||
phpmyadmin phpmyadmin 4.1.11 |
||
phpmyadmin phpmyadmin 4.1.12 |
||
phpmyadmin phpmyadmin 4.1.0 |
||
phpmyadmin phpmyadmin 4.1.13 |
||
phpmyadmin phpmyadmin 4.1.14.1 |
||
phpmyadmin phpmyadmin 4.1.3 |
||
phpmyadmin phpmyadmin 4.1.8 |
||
phpmyadmin phpmyadmin 4.1.14.2 |
||
phpmyadmin phpmyadmin 4.2.4 |
||
phpmyadmin phpmyadmin 4.2.6 |
||
phpmyadmin phpmyadmin 4.2.0 |
||
phpmyadmin phpmyadmin 4.2.1 |
||
phpmyadmin phpmyadmin 4.2.2 |
||
phpmyadmin phpmyadmin 4.2.3 |
||
phpmyadmin phpmyadmin 4.2.5 |
||
phpmyadmin phpmyadmin 4.2.7 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
Vulmon