exploitDog

CVE-2008-4775

Опубликовано: 27 окт. 2008

Источник: redhat

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977.

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2008-4775

Дополнительная информация

Статус:

Low

Дефект:

CWE-79

https://bugzilla.redhat.com/show_bug.cgi?id=468974phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled

EPSS

Процентиль: 91%

0.07228

Низкий

Связанные уязвимости

CVE-2008-4775

ubuntu

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977.

CVE-2008-4775

nvd

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977.

CVE-2008-4775

debian

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin ...

GHSA-3754-x86m-fj9m

github

около 3 лет назад

Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin 3.0.0, and possibly other versions including 2.11.9.2 and 3.0.1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the db parameter, a different vector than CVE-2006-6942 and CVE-2007-5977.

EPSS

Процентиль: 91%

0.07228

Низкий