DescriptionCross-site scripting (XSS) vulnerability in phpMyAdmin 3.5.x before 22.214.171.124 and 4.0.x before 126.96.36.199 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SQL query that is not properly handled during the display of row information.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA phpMyAdmin-188.8.131.52-1.1