Lucene search
MitreCVE-2010-3263HistorySep 10, 2010 - 8:00 p.m.
CVE-2010-3263
2010-09-1020:00:01
CWE-79
mitre
web.nvd.nist.gov
26
cve
2010
3263
cross-site scripting
xss
vulnerability
phpmyadmin
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
60.3%
Cross-site scripting (XSS) vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name.
Affected configurations
Node
phpmyadminphpmyadminMatch3.0.0
ORphpmyadminphpmyadminMatch3.0.0alpha
ORphpmyadminphpmyadminMatch3.0.0beta
ORphpmyadminphpmyadminMatch3.0.0rc1
ORphpmyadminphpmyadminMatch3.0.1
ORphpmyadminphpmyadminMatch3.0.1rc1
ORphpmyadminphpmyadminMatch3.0.1.1
ORphpmyadminphpmyadminMatch3.1.0
ORphpmyadminphpmyadminMatch3.1.0beta1
ORphpmyadminphpmyadminMatch3.1.1
ORphpmyadminphpmyadminMatch3.1.1rc1
ORphpmyadminphpmyadminMatch3.1.2
ORphpmyadminphpmyadminMatch3.1.2rc1
ORphpmyadminphpmyadminMatch3.1.3
ORphpmyadminphpmyadminMatch3.1.3rc1
ORphpmyadminphpmyadminMatch3.1.3.1
ORphpmyadminphpmyadminMatch3.1.3.2
ORphpmyadminphpmyadminMatch3.1.4
ORphpmyadminphpmyadminMatch3.1.4rc2
ORphpmyadminphpmyadminMatch3.1.5
ORphpmyadminphpmyadminMatch3.1.5rc1
ORphpmyadminphpmyadminMatch3.2.0
ORphpmyadminphpmyadminMatch3.2.0beta1
ORphpmyadminphpmyadminMatch3.2.0rc1
ORphpmyadminphpmyadminMatch3.2.1
ORphpmyadminphpmyadminMatch3.2.1rc1
ORphpmyadminphpmyadminMatch3.2.2
ORphpmyadminphpmyadminMatch3.2.2rc1
ORphpmyadminphpmyadminMatch3.3.0.0
ORphpmyadminphpmyadminMatch3.3.1.0
ORphpmyadminphpmyadminMatch3.3.2.0
ORphpmyadminphpmyadminMatch3.3.3.0
ORphpmyadminphpmyadminMatch3.3.4.0
ORphpmyadminphpmyadminMatch3.3.5.0
ORphpmyadminphpmyadminMatch3.3.5.1
ORphpmyadminphpmyadminMatch3.3.6.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpmyadmin | phpmyadmin | 3.2.2 | cpe:/a:phpmyadmin:phpmyadmin:3.2.2:rc1:: |
| phpmyadmin | phpmyadmin | 3.3.3.0 | cpe:/a:phpmyadmin:phpmyadmin:3.3.3.0::: |
| phpmyadmin | phpmyadmin | 3.1.1 | cpe:/a:phpmyadmin:phpmyadmin:3.1.1:rc1:: |
| phpmyadmin | phpmyadmin | 3.2.0 | cpe:/a:phpmyadmin:phpmyadmin:3.2.0:rc1:: |
| phpmyadmin | phpmyadmin | 3.1.0 | cpe:/a:phpmyadmin:phpmyadmin:3.1.0:beta1:: |
| phpmyadmin | phpmyadmin | 3.0.0 | cpe:/a:phpmyadmin:phpmyadmin:3.0.0::: |
| phpmyadmin | phpmyadmin | 3.1.4 | cpe:/a:phpmyadmin:phpmyadmin:3.1.4:rc2:: |
| phpmyadmin | phpmyadmin | 3.3.6.0 | cpe:/a:phpmyadmin:phpmyadmin:3.3.6.0::: |
| phpmyadmin | phpmyadmin | 3.1.5 | cpe:/a:phpmyadmin:phpmyadmin:3.1.5:rc1:: |
| phpmyadmin | phpmyadmin | 3.0.0 | cpe:/a:phpmyadmin:phpmyadmin:3.0.0:rc1:: |
Related
nessus
nessus
phpMyAdmin setup.php Verbose Server Name XSS (PMASA-2010-7)
2010-09-08 00:00:00
GLSA-201201-01 : phpMyAdmin: Multiple vulnerabilities
2012-01-05 00:00:00
seebug
seebug
phpMyAdmin 3.x setupθζ¬θΏη¨θ·¨η«θζ¬ζΌζ΄
2010-09-14 00:00:00
prion
prion
Cross site scripting
2010-09-10 20:00:00
ubuntucve
ubuntucve
CVE-2010-3263
2010-09-10 00:00:00
openvas
openvas
Mandriva Update for phpmyadmin MDVSA-2010:186 (phpmyadmin)
2010-09-27 00:00:00
Mandriva Update for phpmyadmin MDVSA-2010:186 (phpmyadmin)
2010-09-27 00:00:00
phpMyAdmin Setup Script Request Cross Site Scripting Vulnerability
2010-09-15 00:00:00
debiancve
debiancve
CVE-2010-3263
2010-09-10 20:00:01
cvelist
cvelist
CVE-2010-3263
2010-09-10 19:00:00
nvd
nvd
CVE-2010-3263
2010-09-10 20:00:01
phpmyadmin
phpmyadmin
XSS attack on setup script.
2010-09-08 00:00:00
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2012-01-04 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
60.3%
Related for CVE-2010-3263