Candidate: CVE-2011-2642
PublicDate: 2011-08-01 19:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2642
 http://www.phpmyadmin.net/home_page/security/PMASA-2011-9.php
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in the table Print view
 implementation in tbl_printview.php in phpMyAdmin before 3.3.10.3 and 3.4.x
 before 3.4.3.2 allow remote authenticated users to inject arbitrary web
 script or HTML via a crafted table name.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.redhat.com/show_bug.cgi?id=725381
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_phpmyadmin:
 upstream: http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin;a=commit;h=a0823be05aa5835f207c0838b9cca67d2d9a050a
 upstream: http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin;a=commit;h=4bd27166c314faa37cada91533b86377f4d4d214
upstream_phpmyadmin: released (3.4.3.2)
hardy_phpmyadmin: ignored (reached end-of-life)
lucid_phpmyadmin: ignored (reached end-of-life)
maverick_phpmyadmin: ignored (reached end-of-life)
natty_phpmyadmin: ignored (reached end-of-life)
oneiric_phpmyadmin: not-affected (4:3.4.3.2-1)
precise_phpmyadmin: not-affected (4:3.4.3.2-1)
quantal_phpmyadmin: not-affected (4:3.4.3.2-1)
raring_phpmyadmin: not-affected (4:3.4.3.2-1)
saucy_phpmyadmin: not-affected (4:3.4.3.2-1)
devel_phpmyadmin: not-affected (4:3.4.3.2-1)