Lucene search
HistoryApr 26, 2006 - 12:06 a.m.
CVE-2006-2031
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.003
Percentile
68.9%
Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2.8.0.3, 2.8.0.2, 2.8.1-dev, and 2.9.0-dev allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
Affected configurations
Node
phpmyadminphpmyadminMatch2.8.0.2
ORphpmyadminphpmyadminMatch2.8.0.3
ORphpmyadminphpmyadminMatch2.8.1_dev
ORphpmyadminphpmyadminMatch2.9.0_dev
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpmyadmin | phpmyadmin | 2.8.0.2 | cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.0.2:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 2.8.0.3 | cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.0.3:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 2.8.1_dev | cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.1_dev:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 2.9.0_dev | cpe:2.3:a:phpmyadmin:phpmyadmin:2.9.0_dev:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2006-2031
2006-04-26 00:00:00
CVE-2006-2417
2006-05-16 10:00:00
debiancve
debiancve
CVE-2006-2031
2006-04-26 00:06:00
CVE-2006-2417
2006-05-16 10:02:00
prion
prion
Cross site scripting
2006-04-26 00:06:00
Cross site scripting
2006-05-16 10:02:00
phpmyadmin
phpmyadmin
XSS vulnerabilities
2006-05-12 00:00:00
cve
cve
CVE-2006-2031
2006-04-26 00:06:00
CVE-2006-2417
2006-05-16 10:02:00
ubuntucve
ubuntucve
CVE-2006-2031
2006-04-26 00:00:00
CVE-2006-2417
2006-05-16 00:00:00
nvd
nvd
CVE-2006-2417
2006-05-16 10:02:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.003
Percentile
68.9%
Related for NVD:CVE-2006-2031