Summary
This host is running phpMyAdmin and is prone to cross site scripting vulnerability.
Impact
Allows execution of arbitrary HTML and script code, and steal cookie-based authentication credentials.
Impact Level: System
Solution
Upgrade to phpMyAdmin 3.0.1.1 or later
Insight
Input passed to the 'db' parameter in pmd_pdf.php file is not properly sanitised before returning to the user.
Affected
phpMyAdmin phpMyAdmin versions 3.0.1 and prior on all running platform.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2008-4775 -
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:N/I:P/A:N
Related Vulnerabilities