Phpmyadmin 4.0.0 Cross Site Scripting Vulnerability
21 Jul. 2016
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 126.96.36.199, 4.4.x before 188.8.131.52, and 4.6.x before 4.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) a crafted table name that is mishandled during privilege checking in table_row.phtml, (2) a crafted mysqld log_bin directive that is mishandled in log_selector.phtml, (3) the Transformation implementation, (4) AJAX error handling in js/ajax.js, (5) the Designer implementation, (6) the charts implementation in js/tbl_chart.js, or (7) the zoom-search implementation in rows_zoom.phtml.
A vulnerability was reported allowing a specially crafted table name to cause an XSS attack through the functionality to check database privileges.
This XSS doesn't exist in some translations due to different quotes being used there (eg. Czech).
A vulnerability was reported allowing a specifically-configured MySQL server to execute an XSS attack. This particular attack requires configuring the MySQL server log_bin directive with the payload.
Several XSS vulnerabilities were found with the Transformation feature
Several XSS vulnerabilities were found in AJAX error handling
Several XSS vulnerabilities were found in the Designer feature
An XSS vulnerability was found in the charts feature
An XSS vulnerability was found in the zoom search feature