Lucene search
MitreCVELIST:CVE-2006-5718HistoryNov 04, 2006 - 1:00 a.m.
CVE-2006-5718
2006-11-0401:00:00
mitre
www.cve.org
8
Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4 through 2.9.0.2 allows remote attackers to inject arbitrary web script or HTML via UTF-7 or US-ASCII encoded characters, which are injected into an error message, as demonstrated by a request with a utf7 charset parameter accompanied by UTF-7 data.
References
lists.suse.com/archive/suse-security-announce/2006-Nov/0010.html
secunia.com/advisories/22599
secunia.com/advisories/23086
www.hardened-php.net/advisory_122006.137.html
www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-6
www.securityfocus.com/archive/1/450397/100/0/threaded
www.securityfocus.com/bid/20856
www.vupen.com/english/advisories/2006/4298
exchange.xforce.ibmcloud.com/vulnerabilities/29957
Related
ubuntucve
ubuntucve
CVE-2006-5718
2006-11-04 00:00:00
cve
cve
CVE-2006-5718
2006-11-04 01:07:00
debiancve
debiancve
CVE-2006-5718
2006-11-04 01:07:00
phpmyadmin
phpmyadmin
XSS vulnerability
2006-11-01 00:00:00
nvd
nvd
CVE-2006-5718
2006-11-04 01:07:00
suse
suse
cross site scripting in phpMyAdmin
2006-11-24 14:27:09
nessus
nessus
SUSE-SA:2006:071: phpMyAdmin
2007-02-18 00:00:00
openSUSE 10 Security Update : phpMyAdmin (phpMyAdmin-2300)
2007-10-17 00:00:00