Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted row that triggers an improperly constructed confirmation message after inline-editing and save operations, related to (1) js/functions.js and (2) js/tbl_structure.js.
Remediation
References
Related Vulnerabilities
WordPress Plugin Booking.com Product Helper Cross-Site Scripting (1.0.1)
OpenSSL Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-4044)
WordPress Plugin Jigoshop Multiple Unspecified Vulnerabilities (1.17.13)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-2986)