CVE-2010-3263

Cross-site scripting (XSS) vulnerability in setup/frames/index.inc.php in the setup script in phpMyAdmin 3.x before 3.3.7 allows remote attackers to inject arbitrary web script or HTML via a server name.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
VendorProductVersion
phpmyadminphpmyadmin
3.0.0
phpmyadminphpmyadmin
3.0.0:alpha
phpmyadminphpmyadmin
3.0.0:beta
phpmyadminphpmyadmin
3.0.0:rc1
phpmyadminphpmyadmin
3.0.1
phpmyadminphpmyadmin
3.0.1:rc1
phpmyadminphpmyadmin
3.0.1.1
phpmyadminphpmyadmin
3.1.0
phpmyadminphpmyadmin
3.1.0:beta1
phpmyadminphpmyadmin
3.1.1
phpmyadminphpmyadmin
3.1.1:rc1
phpmyadminphpmyadmin
3.1.2
phpmyadminphpmyadmin
3.1.2:rc1
phpmyadminphpmyadmin
3.1.3
phpmyadminphpmyadmin
3.1.3:rc1
phpmyadminphpmyadmin
3.1.3.1
phpmyadminphpmyadmin
3.1.3.2
phpmyadminphpmyadmin
3.1.4
phpmyadminphpmyadmin
3.1.4:rc2
phpmyadminphpmyadmin
3.1.5
phpmyadminphpmyadmin
3.1.5:rc1
phpmyadminphpmyadmin
3.2.0
phpmyadminphpmyadmin
3.2.0:beta1
phpmyadminphpmyadmin
3.2.0:rc1
phpmyadminphpmyadmin
3.2.1
phpmyadminphpmyadmin
3.2.1:rc1
phpmyadminphpmyadmin
3.2.2
phpmyadminphpmyadmin
3.2.2:rc1
phpmyadminphpmyadmin
3.3.0.0
phpmyadminphpmyadmin
3.3.1.0
phpmyadminphpmyadmin
3.3.2.0
phpmyadminphpmyadmin
3.3.3.0
phpmyadminphpmyadmin
3.3.4.0
phpmyadminphpmyadmin
3.3.5.0
phpmyadminphpmyadmin
3.3.5.1
phpmyadminphpmyadmin
3.3.6.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
phpmyadmin
bullseye
4:5.0.4+dfsg2-2+deb11u1
fixed
lenny
not-affected
bookworm
4:5.2.1+dfsg-1
fixed
sid
4:5.2.1+dfsg-4
fixed
trixie
4:5.2.1+dfsg-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
phpmyadmin
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
ignored
karmic
ignored
jaunty
ignored
hardy
ignored
dapper
ignored
Common Weakness Enumeration
References
http://secunia.com/advisories/41210
http://www.mandriva.com/security/advisories?name=MDVSA-2010:186
http://www.phpmyadmin.net/home_page/security/PMASA-2010-7.php
https://exchange.xforce.ibmcloud.com/vulnerabilities/61675
http://secunia.com/advisories/41210
http://www.mandriva.com/security/advisories?name=MDVSA-2010:186
http://www.phpmyadmin.net/home_page/security/PMASA-2010-7.php
https://exchange.xforce.ibmcloud.com/vulnerabilities/61675