Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl4 allow remote attackers to inject arbitrary web script or HTML via (1) the cookie-based login panel, (2) the title parameter and (3) the table creation dialog.

Remediation

References

CVE-2005-3787

Related Vulnerabilities

Dolibarr Improper Privilege Management Vulnerability (CVE-2020-14201)

WordPress Plugin Mail Masta Local File Inclusion (1.0)

Lighttpd Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2022-41556)

OpenSSL Numeric Errors Vulnerability (CVE-2007-5135)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8644)

Severity

Medium

Classification

CVE-2005-3787

Tags

Missing Update Known Vulnerabilities