Lucene search
GitHub Advisory DatabaseGHSA-Q586-XPWR-JC3JHistoryMay 14, 2022 - 2:05 a.m.
phpMyAdmin cross-site scripting vulnerability in crafted view name
2022-05-1402:05:29
CWE-79
GitHub Advisory Database
github.com
7
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
46.2%
A cross-site scripting (XSS) vulnerability in the view operations page in phpMyAdmin 4.1.x before 4.1.14.3 and 4.2.x before 4.2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted view name, related to js/functions.js.
| CPE | Name | Operator | Version |
|---|---|---|---|
| phpmyadmin/phpmyadmin | lt | 4.2.7.1 | |
| phpmyadmin/phpmyadmin | lt | 4.1.14.3 |
Related
prion
prion
Cross site scripting
2014-08-22 01:55:00
ubuntucve
ubuntucve
CVE-2014-5274
2014-08-22 00:00:00
phpmyadmin
phpmyadmin
XSS in view operations page.
2014-08-17 00:00:00
openvas
openvas
phpMyAdmin XSS Vulnerability (PMASA-2014-9) - Linux
2017-08-21 00:00:00
phpMyAdmin XSS Vulnerability (PMASA-2014-9) - Windows
2017-08-21 00:00:00
Fedora Update for phpMyAdmin FEDORA-2014-9555
2014-08-24 00:00:00
debiancve
debiancve
CVE-2014-5274
2014-08-22 01:55:00
osv
osv
phpMyAdmin cross-site scripting vulnerability in crafted view name
2022-05-14 02:05:29
cve
cve
CVE-2014-5274
2014-08-22 01:55:00
nessus
nessus
phpMyAdmin 4.0.x < 4.0.10.2 / 4.1.x < 4.1.14.3 / 4.2.x < 4.2.7.1 Multiple XSS Vulnerabilities (PMASA-2014-8 - PMASA-2014-9)
2014-08-21 00:00:00
FreeBSD : phpMyAdmin -- XSS vulnerabilities (fbb01289-2645-11e4-bc44-6805ca0b3d42)
2014-08-18 00:00:00
Fedora 19 : phpMyAdmin-4.2.7.1-1.fc19 (2014-9534)
2014-08-29 00:00:00
freebsd
freebsd
phpMyAdmin -- XSS vulnerabilities
2014-08-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: phpMyAdmin-4.2.7.1-1.fc20
2014-08-24 02:55:48
[SECURITY] Fedora 19 Update: phpMyAdmin-4.2.7.1-1.fc19
2014-08-28 15:35:08
mageia
mageia
Updated phpmyadmin package fixes XSS vulnerabilities
2014-08-21 13:36:13
securityvulns
securityvulns
[ MDVSA-2014:164 ] phpmyadmin
2014-10-14 00:00:00
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
46.2%
Related for GHSA-Q586-XPWR-JC3J