Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 220.127.116.11 and 4.0.x before 18.104.22.168 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) a crafted database name, (2) a crafted user name, (3) a crafted logo URL in the navigation panel, (4) a crafted entry in a certain proxy list, or (5) crafted content in a version.json file.
Publish Date : 2013-07-31 Last Update Date : 2014-07-18
OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify
a vulnerability or a missing patch. Check out the OVAL definitions
if you want to learn what you should do to verify a vulnerability.