phpMyAdmin 4.2.x < 4.2.13.1 XSS (PMASA-2014-18)

2014-12-0800:00:00

Tenable

www.tenable.com

Versions of phpMyAdmin 4.2.x earlier than 4.2.13.1 are unpatched for a cross-site scripting vulnerability in the redirection mechanism that could be leveraged with a maliciously crafted URL being accessed.

Binary data 8591.prm

VendorProductVersionCPE
phpmyadminphpmyadmincpe:/a:phpmyadmin:phpmyadmin

Vendor	Product	Version	CPE
phpmyadmin	phpmyadmin		cpe:/a:phpmyadmin:phpmyadmin

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9219

www.phpmyadmin.net/home_page/security/PMASA-2014-18.php

JSON