Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.php, or (3) server_databases.php.

Remediation

References

CVE-2005-3301

Related Vulnerabilities

WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.3.0)

WordPress Plugin Sticky Menu on Scroll, Sticky Header, Sticky Welcome Bar for Any Theme-myStickymenu Unspecified Vulnerability (2.1.4)

WordPress Plugin Adaptive Images for WordPress Multiple Vulnerabilities (0.6.66)

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Multiple Vulnerabilities (2.9.42)

Roundcube Improper Input Validation Vulnerability (CVE-2011-1492)

Severity

Medium

Classification

CVE-2005-3301

Tags

Missing Update Known Vulnerabilities