Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-c958-4j9x-q7w4

Опубликовано: 14 мая 2022
Источник: github
Github: Прошло ревью
CVSS3: 6.1

Описание

phpMyAdmin Cross-site Scripting (XSS) in the import dialog

An issue was discovered in phpMyAdmin before 4.8.3. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted file to manipulate an authenticated user who loads that file through the import feature.

Ссылки

Пакеты

Наименование

phpmyadmin/phpmyadmin

composer
Затронутые версииВерсия исправления

< 4.8.3

4.8.3

EPSS

Процентиль: 67%
0.00548
Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2018-15605

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2018-15605

CVSS3: 6.1
ubuntu
почти 7 лет назад

An issue was discovered in phpMyAdmin before 4.8.3. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted file to manipulate an authenticated user who loads that file through the import feature.

nvd логотип

CVE-2018-15605

CVSS3: 6.1
nvd
почти 7 лет назад

An issue was discovered in phpMyAdmin before 4.8.3. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted file to manipulate an authenticated user who loads that file through the import feature.

debian логотип

CVE-2018-15605

CVSS3: 6.1
debian
почти 7 лет назад

An issue was discovered in phpMyAdmin before 4.8.3. A Cross-Site Scrip ...

suse-cvrf логотип

openSUSE-SU-2018:2525-2

suse-cvrf
почти 7 лет назад

Security update for phpMyAdmin

suse-cvrf логотип

openSUSE-SU-2018:2525-1

suse-cvrf
почти 7 лет назад

Security update for phpMyAdmin

EPSS

Процентиль: 67%
0.00548
Низкий

6.1 Medium

CVSS3

CVE ID

CVE-2018-15605

Дефекты

CWE-79