Lucene search

MitreCVE-2005-0992

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0992

2005-05-0204:00:00

mitre

web.nvd.nist.gov

cve-2005-0992

xss vulnerability

phpmyadmin

web script injection

html injection

convcharset parameter

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.4

Confidence

High

EPSS

0.006

Percentile

78.4%

JSON

Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin before 2.6.2-rc1 allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter.

Affected configurations

Nvd

Node

phpmyadminphpmyadminMatch2.0

phpmyadminphpmyadminMatch2.0.1

phpmyadminphpmyadminMatch2.0.2

phpmyadminphpmyadminMatch2.0.3

phpmyadminphpmyadminMatch2.0.4

phpmyadminphpmyadminMatch2.0.5

phpmyadminphpmyadminMatch2.1

phpmyadminphpmyadminMatch2.1.1

phpmyadminphpmyadminMatch2.1.2

phpmyadminphpmyadminMatch2.2

phpmyadminphpmyadminMatch2.2.2

phpmyadminphpmyadminMatch2.2.3

phpmyadminphpmyadminMatch2.2.4

phpmyadminphpmyadminMatch2.2.5

phpmyadminphpmyadminMatch2.2.6

phpmyadminphpmyadminMatch2.2_pre1

phpmyadminphpmyadminMatch2.2_pre2

phpmyadminphpmyadminMatch2.2_rc1

phpmyadminphpmyadminMatch2.2_rc2

phpmyadminphpmyadminMatch2.2_rc3

phpmyadminphpmyadminMatch2.3.1

phpmyadminphpmyadminMatch2.3.2

phpmyadminphpmyadminMatch2.4.0

phpmyadminphpmyadminMatch2.5.0

phpmyadminphpmyadminMatch2.5.1

phpmyadminphpmyadminMatch2.5.2

phpmyadminphpmyadminMatch2.5.3

phpmyadminphpmyadminMatch2.5.4

phpmyadminphpmyadminMatch2.5.5

phpmyadminphpmyadminMatch2.5.5_pl1

phpmyadminphpmyadminMatch2.5.5_rc1

phpmyadminphpmyadminMatch2.5.5_rc2

phpmyadminphpmyadminMatch2.5.6_rc1

phpmyadminphpmyadminMatch2.5.7

phpmyadminphpmyadminMatch2.5.7_pl1

phpmyadminphpmyadminMatch2.6.0_pl1

phpmyadminphpmyadminMatch2.6.0_pl2

phpmyadminphpmyadminMatch2.6.0_pl3

phpmyadminphpmyadminMatch2.6.1

phpmyadminphpmyadminMatch2.6.1_pl1

phpmyadminphpmyadminMatch2.6.1_pl3

phpmyadminphpmyadminMatch2.6.1_rc1

VendorProductVersionCPE
phpmyadminphpmyadmin2.0cpe:2.3:a:phpmyadmin:phpmyadmin:2.0:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.0.1cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.1:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.0.2cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.2:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.0.3cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.3:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.0.4cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.4:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.0.5cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.5:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.1cpe:2.3:a:phpmyadmin:phpmyadmin:2.1:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.1.1cpe:2.3:a:phpmyadmin:phpmyadmin:2.1.1:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.1.2cpe:2.3:a:phpmyadmin:phpmyadmin:2.1.2:*:*:*:*:*:*:*
phpmyadminphpmyadmin2.2cpe:2.3:a:phpmyadmin:phpmyadmin:2.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phpmyadmin	phpmyadmin	2.0	cpe:2.3:a:phpmyadmin:phpmyadmin:2.0:::::::*
phpmyadmin	phpmyadmin	2.0.1	cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.1:::::::*
phpmyadmin	phpmyadmin	2.0.2	cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.2:::::::*
phpmyadmin	phpmyadmin	2.0.3	cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.3:::::::*
phpmyadmin	phpmyadmin	2.0.4	cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.4:::::::*
phpmyadmin	phpmyadmin	2.0.5	cpe:2.3:a:phpmyadmin:phpmyadmin:2.0.5:::::::*
phpmyadmin	phpmyadmin	2.1	cpe:2.3:a:phpmyadmin:phpmyadmin:2.1:::::::*
phpmyadmin	phpmyadmin	2.1.1	cpe:2.3:a:phpmyadmin:phpmyadmin:2.1.1:::::::*
phpmyadmin	phpmyadmin	2.1.2	cpe:2.3:a:phpmyadmin:phpmyadmin:2.1.2:::::::*
phpmyadmin	phpmyadmin	2.2	cpe:2.3:a:phpmyadmin:phpmyadmin:2.2:::::::*