Описание
Cross-site scripting (XSS) vulnerability in view_create.php (aka the Create View page) in phpMyAdmin 4.x before 4.0.3 allows remote authenticated users to inject arbitrary web script or HTML via an invalid SQL CREATE VIEW statement with a crafted name that triggers an error message.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| esm-infra-legacy/trusty | not-affected | |
| lucid | not-affected | 4:3.3.2-1ubuntu1 |
| precise | not-affected | 4:3.4.10.1-1 |
| quantal | not-affected | 4:3.4.11.1-1 |
| raring | not-affected | 4:3.5.8.1-1 |
| saucy | not-affected | 4:4.0.6-1 |
| trusty | not-affected | |
| trusty/esm | not-affected | |
| upstream | released | 4:4.0.1-3 |
Показывать по
3.5 Low
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in view_create.php (aka the Create View page) in phpMyAdmin 4.x before 4.0.3 allows remote authenticated users to inject arbitrary web script or HTML via an invalid SQL CREATE VIEW statement with a crafted name that triggers an error message.
Cross-site scripting (XSS) vulnerability in view_create.php (aka the C ...
Cross-site scripting (XSS) vulnerability in view_create.php (aka the Create View page) in phpMyAdmin 4.x before 4.0.3 allows remote authenticated users to inject arbitrary web script or HTML via an invalid SQL CREATE VIEW statement with a crafted name that triggers an error message.
3.5 Low
CVSS2