Friday, December 3, 2010

Phpmyadmin: Cross-Site-Scripting (XSS) Vulnerability

Users of phpmyadmin please be advised of a Cross-site-scripting (XSS) vulnerability that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com
MDVSA-2010:244: [MDVSA-2010:244] phpmyadmin Cross-site-scripting Issue

Package : phpmyadmin
Problem Description:



A vulnerability has been found and corrected in phpmyadmin:



It was possible to conduct a XSS attack using spoofed request on the

db search script (CVE-2010-4329).



This upgrade provides the latest phpmyadmin versions which is not

vulnerable to this security issue.
Read more at www.criticalwatch.com
 
See this Amp at http://bit.ly/hvlc89

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)