Description

Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2.8.0.3, 2.8.0.2, 2.8.1-dev, and 2.9.0-dev allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

Remediation

References

CVE-2006-2031

Related Vulnerabilities

Apache HTTP Server Out-of-bounds Read Vulnerability (CVE-2007-3847)

TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-1153)

Drupal Other Vulnerability (CVE-2006-4002)

Ruby Improper Input Validation Vulnerability (CVE-2018-8779)

WordPress 4.6.x Denial of Service Vulnerability (4.6 - 4.6.10)

Severity

Low

Classification

CVE-2006-2031

Tags

Missing Update Known Vulnerabilities