Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.3 allow remote authenticated users to inject arbitrary web script or HTML via a crafted name of (1) an event, (2) a procedure, or (3) a trigger.

Remediation

References

CVE-2012-5339

Related Vulnerabilities

WordPress Plugin Raygun4WP Cross-Site Scripting (1.8.2)

MySQL Other Vulnerability (CVE-2004-0388)

WordPress Plugin WP Editor SQL Injection (1.2.6.3)

WordPress Plugin Contact Form Submissions Unspecified Vulnerability (1.2)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3383)

Severity

Low

Classification

CVE-2012-5339 CWE-707

Tags

Missing Update Known Vulnerabilities