Description
Cross-site scripting (XSS) vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to inject arbitrary web script or HTML via a hex-encoded IMG element in the db parameter in a POST request, a different vulnerability than CVE-2006-6942.
Remediation
References
Related Vulnerabilities
Sqlite Divide By Zero Vulnerability (CVE-2019-16168)
MySQL CVE-2024-21173 Vulnerability (CVE-2024-21173)
Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-40898)
WordPress Plugin WordPress Popular Posts Multiple Vulnerabilities (5.3.2)
Jboss EAP Improper Input Validation Vulnerability (CVE-2016-3110)