Description

Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2.8.0.3, 2.8.0.2, 2.8.1-dev, and 2.9.0-dev allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

Remediation

References

CVE-2006-2031

Related Vulnerabilities

WordPress Plugin Spreadsheet (wpSS) 'ss_id' Parameter SQL Injection (0.61)

Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262)

WordPress Plugin JupiterX Core Privilege Escalation (2.0.7)

SharePoint CVE-2022-30172 Vulnerability (CVE-2022-30172)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-0541)

Severity

Low

Classification

CVE-2006-2031

Tags

Missing Update Known Vulnerabilities