CVE-2007-6100
EPSS 0.54%Published: 11/23/2007Modified: 5/7/2026
Also known as:DEBIAN-CVE-2007-6100
Description
Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin before 2.11.2.2, when logins are authenticated with the cookie auth_type, allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter to index.php, a different vulnerability than CVE-2005-0992.
Affected packages (1)
- Debian/phpmyadminfrom 0, < 4:2.11.2.2-1