Description
Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie auth_type, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability than CVE-2005-0992.
Remediation
References
Related Vulnerabilities
WordPress Plugin Easy Custom Sidebars Unspecified Vulnerability (1.0.1)
WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (2.2.2)
WordPress Plugin WooCommerce Cross-Site Scripting (8.9.2)
OpenVPN AS Resource Management Errors Vulnerability (CVE-2014-8104)
WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.35)