Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin before 2.6.2-rc1 allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter.
References
Link | Resource |
---|---|
http://www.arrelnet.com/advisories/adv20050403.html | Vendor Advisory |
http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-3 | Vendor Advisory |
http://www.securityfocus.com/bid/12982 | Exploit Patch |
http://secunia.com/advisories/14799 | Vendor Advisory |
http://www.gentoo.org/security/en/glsa/glsa-200504-08.xml | Patch Vendor Advisory |
http://marc.info/?l=bugtraq&m=111264361622660&w=2 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/19940 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-05-01 21:00
Updated : 2017-07-10 18:32
NVD link : CVE-2005-0992
Mitre link : CVE-2005-0992
JSON object : View
CWE
Products Affected
phpmyadmin
- phpmyadmin