Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2031

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-2031
Last Modified 03 Nov 2008 01:18:42
Published 25 Apr 2006 08:06:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-2031

Summary

Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2.8.0.3, 2.8.0.2, 2.8.1-dev, and 2.9.0-dev allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

Vulnerable Systems

Application

  • Phpmyadmin 2.8.0.2

  • Phpmyadmin 2.8.0.3

  • Phpmyadmin 2.8.1 Dev

  • Phpmyadmin 2.9.0 Dev


References

SECUNIA - 19659

XF - phpmyadmin-index-xss(25954)

CONFIRM - http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-2

MISC - http://pridels0.blogspot.com/2006/04/phpmyadmin-xss-vuln.html


Last Updated: 27 May 2016 10:42:18