CVE-2013-4996 in phpMyAdmin
Сводка (Английский)
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) a crafted database name, (2) a crafted user name, (3) a crafted logo URL in the navigation panel, (4) a crafted entry in a certain proxy list, or (5) crafted content in a version.json file.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Резервировать
29.07.2013
Раскрытие
31.07.2013
Статус
Подтверждённый
Записи
VulDB provides additional information and datapoints for this CVE: