Phpmyadmin: Cross-Site-Scripting (XSS) Vulnerability

Users of phpmyadmin please be advised of a Cross-site-scripting (XSS) vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

MDVSA-2010:244: [MDVSA-2010:244] phpmyadmin Cross-site-scripting Issue
Package : phpmyadmin
Problem Description:

A vulnerability has been found and corrected in phpmyadmin:

It was possible to conduct a XSS attack using spoofed request on the

db search script (CVE-2010-4329).

This upgrade provides the latest phpmyadmin versions which is not

vulnerable to this security issue.

Read more at http://www.criticalwatch.com

 

Advertisements