Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.
Remediation
References
Related Vulnerabilities
WordPress Plugin wpStoreCart 'upload.php' Arbitrary File Upload (2.5.29)
MongoDb Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-32036)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33333)
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2023-0216)