Description

Cross-site scripting (XSS) vulnerability in the setup interface in phpMyAdmin 3.4.x before 3.4.6 allows remote attackers to inject arbitrary web script or HTML via a crafted value.

Remediation

References

CVE-2011-4064

Related Vulnerabilities

WordPress Plugin Contact Form Email Multiple Vulnerabilities (1.2.65)

WordPress Plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) SQL Injection (1.5.107)

WordPress Plugin NextGEN Gallery-WordPress Gallery 'nggallery-manage-gallery' HTML Injection (0.96)

Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3464)

Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-32777)

Severity

Medium

Classification

CVE-2011-4064 CWE-707

Tags

Missing Update Known Vulnerabilities