Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl4 allow remote attackers to inject arbitrary web script or HTML via (1) the cookie-based login panel, (2) the title parameter and (3) the table creation dialog.

Remediation

References

CVE-2005-3787

Related Vulnerabilities

WebLogic CVE-2016-0638 Vulnerability (CVE-2016-0638)

WordPress Plugin WP Editor Arbitrary File Upload (1.2.5.3)

MySQL CVE-2013-2376 Vulnerability (CVE-2013-2376)

Plone CMS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-33511)

WordPress Plugin kk Star Ratings 'root' Parameter Remote File Include (1.7)

Severity

Medium

Classification

CVE-2005-3787

Tags

Missing Update Known Vulnerabilities