Description
Cross-site scripting (XSS) vulnerability in libraries/error_report.lib.php in the error-reporting feature in phpMyAdmin 4.1.x before 4.1.14.7 and 4.2.x before 4.2.12 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Upload Restriction Multiple Vulnerabilities (2.2.3)
WordPress Plugin Generate Child Theme Security Bypass (1.5.3)
WordPress Plugin HD Webplayer Multiple SQL Injection Vulnerabilities (1.1)
Internet Information Services Other Vulnerability (CVE-2000-0126)
Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-15839)