Description

Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.

Remediation

References

CVE-2014-1879

Related Vulnerabilities

phpMyFAQ Misinterpretation of Input Vulnerability (CVE-2023-0880)

ownCloud Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2021-35947)

WordPress Plugin DirectoryPress-Business Directory And Classified Ad Listing SQL Injection (3.6.10)

WordPress Plugin Country State City Dropdown CF7 SQL Injection (2.7.2)

WordPress Plugin Rank Math SEO-Best SEO For WordPress To Increase Your SEO Traffic Security Bypass (1.0.40.2)

Severity

Low

Classification

CVE-2014-1879 CWE-707

Tags

Missing Update Known Vulnerabilities