CVE-2008-3456

Published: Aug 4, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

MDVSA-2008:202

vendor-advisory

x_refsource_MANDRIVA

FEDORA-2008-6868

vendor-advisory

x_refsource_FEDORA

http://yehg.net/lab/pr0js/advisories/Cross-Site_Framing_inphpMyAdmin2.11.7.pdf

x_refsource_MISC

FEDORA-2008-6810

vendor-advisory

x_refsource_FEDORA

phpmyadmin-multiple-weak-security(44050)

vdb-entry

x_refsource_XF

32834

third-party-advisory

x_refsource_SECUNIA

ADV-2008-2226

vdb-entry

x_refsource_VUPEN

DSA-1641

vendor-advisory

x_refsource_DEBIAN

31312

third-party-advisory

x_refsource_SECUNIA

31263

third-party-advisory

x_refsource_SECUNIA

http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-6

x_refsource_CONFIRM

30420

vdb-entry

x_refsource_BID

SUSE-SR:2008:026

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-3456

Description

Affected Products

References