Lucene search

K
cvelistMitreCVELIST:CVE-2007-5977
HistoryNov 15, 2007 - 12:00 a.m.

CVE-2007-5977

2007-11-1500:00:00
mitre
www.cve.org

5 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.2%

Cross-site scripting (XSS) vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to inject arbitrary web script or HTML via a hex-encoded IMG element in the db parameter in a POST request, a different vulnerability than CVE-2006-6942.