CVE-2014-1879

Опубликовано: 20 фев. 2014

Источник: debian

Описание

Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
phpmyadmin	fixed	4:4.1.7-1		package
phpmyadmin	not-affected		squeeze	package

Связанные уязвимости

CVE-2014-1879

ubuntu

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.

CVE-2014-1879

nvd

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.

GHSA-6m6g-jfj8-2gh7

github

около 3 лет назад

Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.