PublicDate: 2006-11-04 01:07:00 UTC
Candidate: CVE-2006-5718
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5718
Description:
 Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4
 through 2.9.0.2 allows remote attackers to inject arbitrary web script or
 HTML via UTF-7 or US-ASCII encoded characters, which are injected into an
 error message, as demonstrated by a request with a utf7 charset parameter
 accompanied by UTF-7 data.
Ubuntu-Description:
Notes:
 fujitsu> PMASA-2006-6
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_phpmyadmin: ignored (reached end-of-life)
edgy_phpmyadmin: needed (reached end-of-life)
feisty_phpmyadmin: not-affected
gutsy_phpmyadmin: not-affected
hardy_phpmyadmin: not-affected
intrepid_phpmyadmin: not-affected
jaunty_phpmyadmin: not-affected
karmic_phpmyadmin: not-affected
devel_phpmyadmin: not-affected
upstream_phpmyadmin: released (2.9.0.3)