Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2010-2958

Cross-site scripting (XSS) vulnerability in libraries/Error.class.php in phpMyAdmin 3.x before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to a PHP backtrace and error messages (aka debugging messages), a different vulnerability than CVE-2010-3056.

See the

CVE page on Mitre.org for more details.

References

MLIST: [oss-security] 2010090...
CONFIRM: http://phpmyadmin.git....
CONFIRM: http://www.phpmyadmin....
SECUNIA: 41206
VUPEN: ADV-2010-2242
MLIST: [oss-security] 2010090...

Launchpad.net

CVE 2010-2958

Related bugs

References