Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) an error message generated by the internal phpMyAdmin parser.
Remediation
References
Related Vulnerabilities
WordPress Plugin Translate Multilingual sites-TranslatePress Cross-Site Scripting (2.0.8)
WordPress Other Vulnerability (CVE-2007-3239)
Joomla! Core Security Bypass (2.5.0 - 3.8.7)
Apache Tomcat CVE-2018-1304 Vulnerability (CVE-2018-1304)
Internet Information Services Other Vulnerability (CVE-2000-0858)