Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

phpMyAdmin 3.x < 3.3.6 XSS

Medium

Synopsis

The remote web server contains a PHP application that is vulnerable to a cross-site scripting attack.

Description

Versions of phpMyAdmin earlier than 3.3.6 are potentially affected by a cross-site scripting vulnerability via error messages in PHP backtrace.

Solution

Upgrade to phpMyAdmin 3.3.6 or later.