CVE-2005-3665

Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.

Affected packages (1)

• Debian/phpmyadminfrom 0, < 4:2.6.4-pl4-2

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-3665