Lucene search

K
ubuntucveUbuntu.comUB:CVE-2013-5001
HistoryJul 31, 2013 - 12:00 a.m.

CVE-2013-5001

2013-07-3100:00:00
ubuntu.com
ubuntu.com
16

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

EPSS

0.001

Percentile

30.2%

Cross-site scripting (XSS) vulnerability in
libraries/plugins/transformations/abstract/TextLinkTransformationsPlugin.class.php
in phpMyAdmin 4.0.x before 4.0.4.2 allows remote authenticated users to
inject arbitrary web script or HTML via a crafted object name associated
with a TextLinkTransformationPlugin link.

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

EPSS

0.001

Percentile

30.2%