CVE-2014-9219
EUVD-2014-904408.12.2014, 11:59
Cross-site scripting (XSS) vulnerability in the redirection feature in url.php in phpMyAdmin 4.2.x before 4.2.13.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| phpmyadmin | phpmyadmin | 4.2.0 |
| phpmyadmin | phpmyadmin | 4.2.1 |
| phpmyadmin | phpmyadmin | 4.2.2 |
| phpmyadmin | phpmyadmin | 4.2.3 |
| phpmyadmin | phpmyadmin | 4.2.4 |
| phpmyadmin | phpmyadmin | 4.2.5 |
| phpmyadmin | phpmyadmin | 4.2.6 |
| phpmyadmin | phpmyadmin | 4.2.7 |
| phpmyadmin | phpmyadmin | 4.2.7.1 |
| phpmyadmin | phpmyadmin | 4.2.8 |
| phpmyadmin | phpmyadmin | 4.2.8.1 |
| phpmyadmin | phpmyadmin | 4.2.9 |
| phpmyadmin | phpmyadmin | 4.2.9.1 |
| phpmyadmin | phpmyadmin | 4.2.10 |
| phpmyadmin | phpmyadmin | 4.2.10.1 |
| phpmyadmin | phpmyadmin | 4.2.11 |
| phpmyadmin | phpmyadmin | 4.2.12 |
| phpmyadmin | phpmyadmin | 4.2.13 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| phpmyadmin |
|
References