CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5718

Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4 through 2.9.0.2 allows remote attackers to inject arbitrary web script or HTML via UTF-7 or US-ASCII encoded characters, which are injected into an error message, as demonstrated by a request with a utf7 charset parameter accompanied by UTF-7 data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 73.8%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2006-5718

Phpmyadmin » Phpmyadmin » Version: 2.6.4_pl1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.6.4_pl1
Phpmyadmin » Phpmyadmin » Version: 2.6.4_pl3

cpe:2.3:a:phpmyadmin:phpmyadmin:2.6.4_pl3
Phpmyadmin » Phpmyadmin » Version: 2.6.4_pl4

cpe:2.3:a:phpmyadmin:phpmyadmin:2.6.4_pl4
Phpmyadmin » Phpmyadmin » Version: 2.6.4_rc1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.6.4_rc1
Phpmyadmin » Phpmyadmin » Version: 2.7

cpe:2.3:a:phpmyadmin:phpmyadmin:2.7
Phpmyadmin » Phpmyadmin » Version: 2.7.0_beta1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.7.0_beta1
Phpmyadmin » Phpmyadmin » Version: 2.7_pl1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.7_pl1
Phpmyadmin » Phpmyadmin » Version: 2.8.1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.1
Phpmyadmin » Phpmyadmin » Version: 2.8.2

cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.2
Phpmyadmin » Phpmyadmin » Version: 2.8.3

cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.3
Phpmyadmin » Phpmyadmin » Version: 2.8.4

cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.4
Phpmyadmin » Phpmyadmin » Version: 2.9

cpe:2.3:a:phpmyadmin:phpmyadmin:2.9
Phpmyadmin » Phpmyadmin » Version: 2.9.1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.9.1
Phpmyadmin » Phpmyadmin » Version: 2.9.2

cpe:2.3:a:phpmyadmin:phpmyadmin:2.9.2
Phpmyadmin » Phpmyadmin » Version: 2.9_rc1

cpe:2.3:a:phpmyadmin:phpmyadmin:2.9_rc1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5718

Products

Pricing

Contact Us