Cross-site scripting (XSS) vulnerability in examples/openid.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving an OpenID error message.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
No history.
Information
Published : 2016-07-03 01:59
Updated : 2024-02-28 15:21
NVD link : CVE-2016-5731
Mitre link : CVE-2016-5731
CVE.ORG link : CVE-2016-5731
JSON object : View
Products Affected
opensuse
- opensuse
- leap
phpmyadmin
- phpmyadmin
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')