Candidate: CVE-2011-3592
PublicDate: 2014-12-26 02:59:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3592
 http://www.phpmyadmin.net/home_page/security/PMASA-2011-14.php
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in the
 PMA_unInlineEditRow function in js/sql.js in phpMyAdmin 3.4.x before 3.4.5
 allow remote authenticated users to inject arbitrary web script or HTML via
 a (1) database name, (2) table name, or (3) column name that is not
 properly handled after an inline-editing operation.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Nils Juenemann
Assigned-to: 
CVSS: 

Patches_phpmyadmin:
upstream_phpmyadmin: released (3.4.5)
hardy_phpmyadmin: ignored (reached end-of-life)
lucid_phpmyadmin: ignored (reached end-of-life)
maverick_phpmyadmin: ignored (reached end-of-life)
natty_phpmyadmin: ignored (reached end-of-life)
oneiric_phpmyadmin: not-affected (4:3.4.5-1)
precise_phpmyadmin: not-affected (4:3.4.10.1-1)
quantal_phpmyadmin: not-affected (4:3.4.11-1)
raring_phpmyadmin: not-affected (4:3.4.11-1)
saucy_phpmyadmin: not-affected (4:3.4.11-1)
devel_phpmyadmin: not-affected (4:3.4.11-1)