CVE-2007-0341 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-0341

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.1 and earlier, when Microsoft Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via a javascript: URI in a CSS style in the convcharset parameter to the top-level URI, a different vulnerability than CVE-2005-0992.

Affected Software

Name	Vendor	Start Version	End Version
Phpmyadmin	Phpmyadmin	2.8.1 (including)	2.8.1 (including)
Phpmyadmin	Ubuntu	dapper	*
Phpmyadmin	Ubuntu	upstream	*

References

http://www.securityfocus.com/archive/1/456698/100/0/threaded
http://www.securityfocus.com/archive/1/456726/100/0/threaded
http://www.virtuax.be/advisories/Advisory1-12012007.txt
http://www.securityfocus.com/archive/1/456698/100/0/threaded
http://www.securityfocus.com/archive/1/456726/100/0/threaded
http://www.virtuax.be/advisories/Advisory1-12012007.txt