Arbitrary Web Script Injection Vulnerability in phpMyAdmin 3.4.x

Arbitrary Web Script Injection Vulnerability in phpMyAdmin 3.4.x

CVE-2011-4782 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x before 3.4.9 allows remote attackers to inject arbitrary web script or HTML via the host parameter.

Learn more about our Web App Pen Testing.