Описание
Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| phpmyadmin | fixed | 4:3.4.9-1 | package | |
| phpmyadmin | not-affected | squeeze | package | |
| phpmyadmin | not-affected | lenny | package |
Примечания
unlikely exploitation scenario
EPSS
Процентиль: 64%
0.00475
Низкий
Связанные уязвимости
ubuntu
больше 13 лет назад
Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
nvd
больше 13 лет назад
Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
EPSS
Процентиль: 64%
0.00475
Низкий