CVE Vulnerabilities

CVE-2005-3787

Published: Nov 24, 2005 | Modified: Oct 19, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl4 allow remote attackers to inject arbitrary web script or HTML via (1) the cookie-based login panel, (2) the title parameter and (3) the table creation dialog.

Affected Software

Name Vendor Start Version End Version
Phpmyadmin Phpmyadmin 2.2.0 2.2.0
Phpmyadmin Phpmyadmin 2.2.7_pl1 2.2.7_pl1
Phpmyadmin Phpmyadmin 2.5.2_pl1 2.5.2_pl1
Phpmyadmin Phpmyadmin 2.5.3 2.5.3
Phpmyadmin Phpmyadmin 2.5.4 2.5.4
Phpmyadmin Phpmyadmin 2.5.5_pl1 2.5.5_pl1
Phpmyadmin Phpmyadmin 2.5.6_rc2 2.5.6_rc2
Phpmyadmin Phpmyadmin 2.5.7_pl1 2.5.7_pl1
Phpmyadmin Phpmyadmin 2.6.0_pl3 2.6.0_pl3
Phpmyadmin Phpmyadmin 2.6.1_pl3 2.6.1_pl3
Phpmyadmin Phpmyadmin 2.6.2_pl1 2.6.2_pl1
Phpmyadmin Phpmyadmin 2.6.3_pl1 2.6.3_pl1
Phpmyadmin Phpmyadmin 2.6.4_pl3 2.6.4_pl3

References