Back to search
CVE-2011-3598
Published: Oct 8, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in phpPgAdmin before 5.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) a web page title, related to classes/Misc.php; or the (2) return_url or (3) return_desc parameter to display.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
FEDORA-2011-13805
vendor-advisory
x_refsource_FEDORA
46426
third-party-advisory
x_refsource_SECUNIA
[phppgadmin-news] 20111003 [ppa-news] phpPgAdmin 5.0.3 released
mailing-list
x_refsource_MLIST
openSUSE-SU-2012:0493
vendor-advisory
x_refsource_SUSE
https://bugs.gentoo.org/show_bug.cgi?id=385505
x_refsource_CONFIRM
46248
third-party-advisory
x_refsource_SECUNIA
75998
vdb-entry
x_refsource_OSVDB
FEDORA-2011-13801
vendor-advisory
x_refsource_FEDORA
[oss-security] 20111004 Re: CVE Request -- phpPgAdmin -- Multiple XSS flaws fixed in v5.0.3
mailing-list
x_refsource_MLIST
http://freshmeat.net/projects/phppgadmin/releases/336969
x_refsource_CONFIRM
[oss-security] 20111004 CVE Request -- phpPgAdmin -- Multiple XSS flaws fixed in v5.0.3
mailing-list
x_refsource_MLIST
49914
vdb-entry
x_refsource_BID
https://bugzilla.redhat.com/show_bug.cgi?id=743205
x_refsource_CONFIRM
75997
vdb-entry
x_refsource_OSVDB
FEDORA-2011-13748
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now