• info
• discussion
• exploit
• solution
• references

phpMyAdmin 'export page' Cross Site Scripting Vulnerability

Solution:
Vendor updates are available. Please see the references for more information.


Debian Linux 5.0 ia-64

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

Debian Linux 5.0 alpha

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

Debian Linux 5.0 mipsel

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

Debian Linux 4.0 amd64

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 4.0 ia-32

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 4.0 hppa

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 4.0 armel

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 5.0 armel

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

Debian Linux 5.0

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

Debian Linux 4.0 mipsel

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 5.0 mips

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

phpMyAdmin phpMyAdmin 3.0.1.1

• phpMyAdmin-3.1.3.1-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-3.1.3.1-all-l anguages.tar.gz

Debian Linux 4.0 ia-64

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 4.0 mips

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

phpMyAdmin phpMyAdmin 2.11.5.1

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

Debian Linux 5.0 sparc

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

phpMyAdmin phpMyAdmin 2.11.9.3

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

Debian Linux 4.0 arm

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 4.0 powerpc

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

Debian Linux 4.0 m68k

• Debian phpmyadmin_2.9.1.1-11_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .9.1.1-11_all.deb

phpMyAdmin phpMyAdmin 2.11.2.2

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

Debian Linux 5.0 ia-32

• Debian phpmyadmin_2.11.8.1-5+lenny1_all.deb
  http://security.debian.org/pool/updates/main/p/phpmyadmin/phpmyadmin_2 .11.8.1-5+lenny1_all.deb

phpMyAdmin phpMyAdmin 2.11.5

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

phpMyAdmin phpMyAdmin 2.11.7

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

phpMyAdmin phpMyAdmin 2.11.9 .1

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

phpMyAdmin phpMyAdmin 2.11.9 4

• phpMyAdmin-2.11.9.5-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-2.11.9.5-all- languages.tar.gz

phpMyAdmin phpMyAdmin 3.0

• phpMyAdmin-3.1.3.1-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-3.1.3.1-all-l anguages.tar.gz

phpMyAdmin phpMyAdmin 3.0.1

• phpMyAdmin-3.1.3.1-all-languages.tar.gz
  http://prdownloads.sourceforge.net/phpmyadmin/phpMyAdmin-3.1.3.1-all-l anguages.tar.gz