Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=237882
Summary: CVE-2007-2245: phpMyAdmin < 2.10.1 XSS vulnerabilities Product: Fedora Extras Version: fc6 Platform: All OS/Version: Linux Status: NEW Severity: medium Priority: medium Component: phpMyAdmin AssignedTo: mmcgrath@redhat.com ReportedBy: ville.skytta@iki.fi QAContact: extras-qa@fedoraproject.org CC: fedora-security-list@redhat.com,redhat- bugzilla@linuxnetz.de
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2245
"Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.10.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the fieldkey parameter to browse_foreigners.php or (2) certain input to the PMA_sanitize function."
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2007-2245: phpMyAdmin < 2.10.1 XSS vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=237882
bugzilla@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Product|Fedora Extras |Fedora
------- Additional Comments From thoger@redhat.com 2007-10-18 04:04 EST ------- As both F7 and FC6 extras have 2.11.0, I believe this should be fixed now. Mike?
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2007-2245: phpMyAdmin < 2.10.1 XSS vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=237882
------- Additional Comments From mmcgrath@redhat.com 2007-10-29 09:12 EST ------- *** Bug 356291 has been marked as a duplicate of this bug. ***
Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: CVE-2007-2245: phpMyAdmin < 2.10.1 XSS vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=237882
lkundrak@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Fixed In Version| |phpMyAdmin-2.11.2-1.fc7 Resolution| |CURRENTRELEASE
security@lists.fedoraproject.org