EPSS
Percentile
59.7%
phpMyAdmin is vulnerable to cross-site scripting (XSS). Import warning messages are not sanitized and allow remote attackers to inject arbitrary Javascript code in a victim’s browser.
github.com/phpmyadmin/phpmyadmin/commit/00d90b3ae415b31338f76263359467a9fbebd0a1
www.phpmyadmin.net/security/PMASA-2018-5/