Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.

Remediation

References

CVE-2005-3665

Related Vulnerabilities

WordPress Plugin Comments-wpDiscuz Cross-Site Scripting (3.1.4)

Apache HTTP Server CVE-2005-2700 Vulnerability (CVE-2005-2700)

WordPress 4.2.x Prototype Pollution (4.2 - 4.2.31)

Oracle Database Server CVE-2009-1007 Vulnerability (CVE-2009-1007)

Nginx Use After Free Vulnerability (CVE-2022-31307)

Severity

Medium

Classification

CVE-2005-3665

Tags

Missing Update Known Vulnerabilities