Description

Cross-site scripting (XSS) vulnerability in mysql/phpinfo.php in phpMyAdmin 2.6.1 allows remote attackers to inject arbitrary web script or HTML via the lang[] parameter.

Remediation

References

CVE-2007-2016

Related Vulnerabilities

Tornado Improper Input Validation Vulnerability (CVE-2012-2374)

Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2017-12165)

Microsoft SQL Server Other Vulnerability (CVE-2000-1086)

WebLogic CVE-2019-2452 Vulnerability (CVE-2019-2452)

WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder Cross-Site Scripting (1.15.2)

Severity

Medium

Classification

CVE-2007-2016

Tags

Missing Update Known Vulnerabilities