Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-12581

Опубликовано: 21 июн. 2018
Источник: nvd
CVSS3: 6.1
CVSS2: 4.3
EPSS Низкий

Описание

An issue was discovered in js/designer/move.js in phpMyAdmin before 4.8.2. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted database name to trigger an XSS attack when that database is referenced from the Designer feature.

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:phpmyadmin:phpmyadmin:*:*:*:*:*:*:*:*
Версия до 4.8.2 (исключая)

EPSS

Процентиль: 71%
0.00688
Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

CVSS3: 6.1
ubuntu
около 7 лет назад

An issue was discovered in js/designer/move.js in phpMyAdmin before 4.8.2. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted database name to trigger an XSS attack when that database is referenced from the Designer feature.

CVSS3: 6.1
debian
около 7 лет назад

An issue was discovered in js/designer/move.js in phpMyAdmin before 4. ...

CVSS3: 6.1
github
около 3 лет назад

phpMyAdmin XSS Vulnerability

suse-cvrf
около 7 лет назад

Security update for phpMyAdmin

suse-cvrf
около 7 лет назад

Security update for phpMyAdmin

EPSS

Процентиль: 71%
0.00688
Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79