Description

Cross-site scripting (XSS) vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name.

Remediation

References

CVE-2010-3263

Related Vulnerabilities

WordPress Other Vulnerability (CVE-2006-6017)

Oracle Database Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5505)

WordPress Plugin WP-PostRatings SQL Injection (1.83.1)

Chamilo Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2023-34960)

WordPress Plugin Scriptless Social Sharing Cross-Site Scripting (3.2.1)

Severity

Medium

Classification

CVE-2010-3263 CWE-707

Tags

Missing Update Known Vulnerabilities