phpMyAdmin index.php convcharset Variable XSS

2005-04-04T04:53:51
ID OSVDB:15226
Type osvdb
Reporter OSVDB
Modified 2005-04-04T04:53:51

Description

Solution Description

Upgrade to version 2.6.2-rc1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.phpmyadmin.net/ Vendor Specific Advisory URL Security Tracker: 1013642 Secunia Advisory ID:14911 Secunia Advisory ID:14799 Secunia Advisory ID:14987 Other Advisory URL: http://www.arrelnet.com/advisories/adv20050403.html Other Advisory URL: http://security.gentoo.org/glsa/glsa-200504-08.xml Other Advisory URL: http://lists.suse.com/archive/suse-security-announce/2005-Apr/0005.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-04/0049.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0341.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0329.html CVE-2005-0992