Description phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack through crafted cookie parameters Remediation References CVE-2017-1000015 Related Vulnerabilities Roundcube Files or Directories Accessible to External Parties Vulnerability (CVE-2017-16651) Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-11322) Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-8045) WordPress Plugin User Login History Multiple Cross-Site Scripting Vulnerabilities (1.5.2) Oracle JRE CVE-2012-4681 Vulnerability (CVE-2012-4681) Severity Medium Classification CVE-2017-1000015 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities