Description

Cross-site scripting (XSS) vulnerabilities in certain versions of phpMyAdmin before 2.8.0.4 allow remote attackers to inject arbitrary web script or HTML via the db parameter in unknown scripts.

Remediation

References

CVE-2006-2418

Related Vulnerabilities

WordPress Plugin Popup Maker-Popup for opt-ins, lead gen, & more Multiple Vulnerabilities (1.17.1)

WordPress Plugin Export Users to CSV Unspecified Vulnerability (1.3)

XWiki Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2022-23619)

WordPress Plugin Contact Form 7 Captcha Cross-Site Request Forgery (0.0.8)

WordPress Cross-Site Scripting Vulnerability (0.70 - 3.7.11)

Severity

Medium

Classification

CVE-2006-2418

Tags

Missing Update Known Vulnerabilities