Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23808) - Vulnerability Database

phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23808)

Description

An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker can inject malicious code into aspects of the setup script, which can allow XSS or HTML injection.

References

CVE-2022-23808

Related Vulnerabilities

Artifactory Deserialization of Untrusted Data Vulnerability (CVE-2022-0573) High
Common tags: Missing Update Known Vulnerabilities
SharePoint Download of Code Without Integrity Check Vulnerability (CVE-2020-1453) High
Common tags: Missing Update Known Vulnerabilities
SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-1345) Medium
Common tags: Missing Update Known Vulnerabilities
SharePoint Deserialization of Untrusted Data Vulnerability (CVE-2020-1439) High
Common tags: Missing Update Known Vulnerabilities
SharePoint CVE-2020-1440 Vulnerability (CVE-2020-1440) Medium
Common tags: Missing Update Known Vulnerabilities

Severity

Medium

Classification

CVE-2022-23808
CWE-707
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update
Known Vulnerabilities