NuytsTech Security

CVE-2005-3665

by ·

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.

Date published : 2005-12-08

http://www.securityfocus.com/bid/15735

http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-8

Tags: