NVD

Id
64293  
Name
CVE-2006-5718  
Description
Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4 through 2.9.0.2 allows remote attackers to inject arbitrary web script or HTML via UTF-7 or US-ASCII encoded characters, which are injected into an error message, as demonstrated by a request with a utf7 charset parameter accompanied by UTF-7 data.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2016-12-20  
Published
2006-11-03  
Modified Date
2011-03-07  
Seq
2006-5718  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
335348 64293 CVE-2006-5718 SUSE-SA:2006:071  View
335349 64293 CVE-2006-5718 http://www.hardened-php.net/advisory_122006.137.html  View
335350 64293 CVE-2006-5718 http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-6  View
335351 64293 CVE-2006-5718 20061102 Advisory 12/2006: phpMyAdmin - error.php XSS Vulnerability  View
335352 64293 CVE-2006-5718 20856  View
335353 64293 CVE-2006-5718 ADV-2006-4298  View
335354 64293 CVE-2006-5718 phpmyadmin-utf7-xss(29957)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
61138 JVNDB-2006-003404 phpMyAdmin の error.php におけるクロスサイトスクリプティングの脆弱性 phpMyAdmin の error.php は、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-5718 21820 CVE-2006-5718 64293 4.3 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-003404.html 2006-11-01 2012-12-20 View