Lucene search

K

Veracode Vulnerability DatabaseVERACODE:8026

HistoryDec 12, 2018 - 9:56 a.m.

Cross-Site Scripting (XSS)

2018-12-1209:56:01

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

16

0.071 Low

EPSS

Percentile

94.0%

phpmyadmin is vulnerable to cross-site scripting (XSS). The attack exists because the database\table names in navigation tree are not properly escaped and allows a remote attacker to inject arbitrary Javascript into a victim’s browser.

CPENameOperatorVersion
phpmyadmin/phpmyadminle4.8.3

References

www.phpmyadmin.net/security/PMASA-2018-8/

0.071 Low

EPSS

Percentile

94.0%

Related for VERACODE:8026

osv5 alpinelinux1 cve1 github1 nvd1 phpmyadmin1 ubuntucve1 checkpoint_advisories1 debiancve1 prion1 cvelist1 mageia1 nessus7 openvas8 debian1 suse2 thn1 myhack581 gentoo1 ubuntu2