phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2018-15605 - Vulnerability Database

phpMyAdmin

phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2018-15605

Medium

Reference: CVE-2018-15605

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-15605

Title: phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability

Overview:

An issue was discovered in phpMyAdmin before 4.8.3. A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted file to manipulate an authenticated user who loads that file through the import feature.