This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote web server hosts a PHP application that is affected by a
cross-site scripting vulnerability.
According to its self-identified version number, the phpMyAdmin
install hosted on the remote web server is affected by a cross-site
The vulnerability is in the replication-setup functionality in
js/replication.js in phpMyAdmin 3.4.x before 22.214.171.124, which allows
user-assisted remote attackers to inject arbitrary web script or HTML
via a crafted database name.
See also :
Upgrade to phpMyAdmin 126.96.36.199 or later or apply the patch from the
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true