Описание
Cross-site scripting (XSS) vulnerability in libraries/Error.class.php in phpMyAdmin 3.x before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to a PHP backtrace and error messages (aka debugging messages), a different vulnerability than CVE-2010-3056.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 3.x only |
| devel | not-affected | 4:3.3.7-1 |
| hardy | not-affected | 3.x only |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | not-affected | 4:3.3.7-1 |
| natty | not-affected | 4:3.3.7-1 |
| oneiric | not-affected | 4:3.3.7-1 |
| precise | not-affected | 4:3.3.7-1 |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in libraries/Error.class.php in phpMyAdmin 3.x before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to a PHP backtrace and error messages (aka debugging messages), a different vulnerability than CVE-2010-3056.
Cross-site scripting (XSS) vulnerability in libraries/Error.class.php ...
4.3 Medium
CVSS2