logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2010-4480

Description

error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted BBcode tag containing "@" characters, as demonstrated using "[a@url@page]". #### Bugs * <https://bugs.launchpad.net/ubuntu/+source/phpmyadmin/+bug/696857> * <https://bugs.launchpad.net/ubuntu/lucid/+source/phpmyadmin/+bug/913846>


Affected Package


OS OS Version Package Name Package Version
ubuntu 10.04 phpmyadmin 4:3.3.2-1ubuntu1
ubuntu 10.10 phpmyadmin 4:3.3.7-3build0.10.10.1
ubuntu upstream phpmyadmin 4:3.3.7-3, 4:3.3.9-1

Related