Description

Cross-site scripting (XSS) vulnerability in libraries/Error.class.php in phpMyAdmin 3.x before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to a PHP backtrace and error messages (aka debugging messages), a different vulnerability than CVE-2010-3056.

Remediation

References

CVE-2010-2958

Related Vulnerabilities

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2042)

Joomla Other Vulnerability (CVE-2005-3772)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-0215)

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2024-1635)

WebLogic Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-11987)

Severity

Medium

Classification

CVE-2010-2958 CWE-707

Tags

Missing Update Known Vulnerabilities