Unknown
CVE-2010-3056
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.11.x before 2.11.10.1 and 3.x before 3.3.5.1 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) db_search.php, (2) db_sql.php, (3) db_structure.php, (4) js/messages.php, (5) libraries/common.lib.php, (6) libraries/database_interface.lib.php, (7) libraries/dbi/mysql.dbi.lib.php, (8) libraries/dbi/mysqli.dbi.lib.php, (9) libraries/db_info.inc.php, (10) libraries/sanitizing.lib.php, (11) libraries/sqlparser.lib.php, (12) server_databases.php, (13) server_privileges.php, (14) setup/config.php, (15) sql.php, (16) tbl_replace.php, and (17) tbl_sql.php.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- phpmyadmin 2.11.0,
- phpmyadmin 2.11.1.0,
- phpmyadmin 2.11.1.1,
- phpmyadmin 2.11.1.2,
- phpmyadmin 2.11.10.0,
- phpmyadmin 2.11.2.0,
- phpmyadmin 2.11.2.1,
- phpmyadmin 2.11.2.2,
- phpmyadmin 2.11.3.0,
- phpmyadmin 2.11.4.0,
- phpmyadmin 2.11.5.0,
- phpmyadmin 2.11.5.1,
- phpmyadmin 2.11.5.2,
- phpmyadmin 2.11.6.0,
- phpmyadmin 2.11.7.0,
- phpmyadmin 2.11.7.1,
- phpmyadmin 2.11.8.0,
- phpmyadmin 2.11.9.0,
- phpmyadmin 2.11.9.1,
- phpmyadmin 2.11.9.2,
- phpmyadmin 2.11.9.3,
- phpmyadmin 2.11.9.4,
- phpmyadmin 2.11.9.5,
- phpmyadmin 2.11.9.6,
- phpmyadmin 3.0.0,
- phpmyadmin 3.0.1,
- phpmyadmin 3.0.1.1,
- phpmyadmin 3.1.0,
- phpmyadmin 3.1.1,
- phpmyadmin 3.1.2,
- phpmyadmin 3.1.3,
- phpmyadmin 3.1.3.1,
- phpmyadmin 3.1.3.2,
- phpmyadmin 3.1.4,
- phpmyadmin 3.1.5,
- phpmyadmin 3.2.0,
- phpmyadmin 3.2.1,
- phpmyadmin 3.2.2,
- phpmyadmin 3.3.0.0,
- phpmyadmin 3.3.1.0,
- phpmyadmin 3.3.2.0,
- phpmyadmin 3.3.3.0,
- phpmyadmin 3.3.4.0,
- phpmyadmin 3.3.5.0
References
Advisory
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
