CVE-2007-2245 in Ubuntu

CVE-2007-2245

Priority

Untriaged

Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before
2.10.1.0 allow remote attackers to inject arbitrary web script or HTML via
(1) the fieldkey parameter to browse_foreigners.php or (2) certain input to
the PMA_sanitize function.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2245

Bugs

https://bugs.launchpad.net/ubuntu/+source/phpmyadmin/+bug/162599

Notes

PMASA-2007-4

Assigned-to

fujitsu

Package

Source: phpmyadmin (LP Ubuntu Debian)

Upstream:	released (2.10.1)
Ubuntu 8.04 LTS (Hardy Heron):	not-affected
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2012-06-01 15:17:51 UTC (commit 5347)