Lucene search

K
osvGoogleOSV:GHSA-7RF8-9R8F-QF59
HistoryMay 17, 2022 - 3:31 a.m.

phpMyAdmin Cross-site scripting (XSS) vulnerability in SQL parser

2022-05-1703:31:15
Google
osv.dev
5
phpmyadmin
xss
sql
parser
vulnerability

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

48.3%

Cross-site scripting (XSS) vulnerability in the format function in libraries/sql-parser/src/Utils/Error.php in the SQL parser in phpMyAdmin 4.5.x before 4.5.5.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted query.

AI Score

6.1

Confidence

High

EPSS

0.001

Percentile

48.3%