Description
Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Mega Menu Unspecified Vulnerability (1.4.1)
WordPress Plugin wpStoreCart 'upload.php' Arbitrary File Upload (2.5.29)
Squid CVE-2024-45802 Vulnerability (CVE-2024-45802)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43953)
MongoDb Improper Input Validation Vulnerability (CVE-2015-1609)