Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.9.2-rc1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Phpmyadmin | Phpmyadmin | <= 2.9.1.1 |
References
- http://osvdb.org/32667
- http://secunia.com/advisories/23702PatchVendor Advisory
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:199
- http://www.phpmyadmin.net/home_page/downloads.php?relnotes=0Vendor Advisory
- http://www.securityfocus.com/bid/21987
- http://www.vupen.com/english/advisories/2007/0125
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31387
- http://osvdb.org/32667
- http://secunia.com/advisories/23702PatchVendor Advisory
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:199
- http://www.phpmyadmin.net/home_page/downloads.php?relnotes=0Vendor Advisory
- http://www.securityfocus.com/bid/21987
- http://www.vupen.com/english/advisories/2007/0125
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31387
FAQ
What is CVE-2007-0204?
CVE-2007-0204 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.9.2-rc1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details a...
How severe is CVE-2007-0204?
CVE-2007-0204 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0204?
Check the references section above for vendor advisories and patch information. Affected products include: Phpmyadmin Phpmyadmin.