Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Other Vulnerability - CVE-2007-1395 - Vulnerability Database
phpMyAdmin

phpMyAdmin Other Vulnerability - CVE-2007-1395

Medium
Reference: CVE-2007-1395
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-1395
Title: phpMyAdmin Other Vulnerability
Overview:

Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 through 2.9.2 allows remote attackers to conduct cross-site scripting (XSS) attacks by injecting arbitrary JavaScript or HTML in a (1) db or (2) table parameter value followed by an uppercase lt/SCRIPTgt end tag which bypasses the protection against lowercase lt/scriptgt.