Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9219) - Vulnerability Database

phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-9219)

Description

Cross-site scripting (XSS) vulnerability in the redirection feature in url.php in phpMyAdmin 4.2.x before 4.2.13.1 allows remote attackers to inject arbitrary web script or HTML via the url parameter.

References

CVE-2014-9219

Related Vulnerabilities

Beego Framework Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-39391) Medium
Common tags: Missing Update Known Vulnerabilities
Jboss EAP Improper Input Validation Vulnerability (CVE-2020-10693) Medium
Common tags: Missing Update Known Vulnerabilities
Joomla Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-10243) Critical
Common tags: Missing Update Known Vulnerabilities
ownCloud Server-Side Request Forgery (SSRF) Vulnerability (CVE-2020-10252) High
Common tags: Missing Update Known Vulnerabilities
ownCloud Improper Authentication Vulnerability (CVE-2020-10254) Medium
Common tags: Missing Update Known Vulnerabilities

Severity

Medium

Classification

CVE-2014-9219
CWE-707

Tags

Missing Update
Known Vulnerabilities