CVE-2022-23808
Summary
| CVE | CVE-2022-23808 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-01-22 02:15:00 UTC |
|---|
| Updated | 2023-11-26 12:15:00 UTC |
|---|
| Description | An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker can inject malicious code into aspects of the setup script, which can allow XSS or HTML injection. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| phpMyAdmin - Security - PMASA-2022-2 |
MISC |
www.phpmyadmin.net |
|
| Exploit CVE-2022–23808. Hello cyber security enthusiast! This… | by th3.d1p4k | Feb, 2022 | InfoSec Write-ups |
MISC |
infosecwriteups.com |
|
| phpMyAdmin: Multiple Vulnerabilities (GLSA 202311-17) — Gentoo security |
|
security.gentoo.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 150490 phpMyAdmin Cross-Site Scripting (XSS) Vulnerability (CVE-2022-23808)
- 184040 Debian Security Update for phpmyadmin (CVE-2022-23808)
- 282314 Fedora Security Update for phpMyAdmin (FEDORA-2022-914fa8641a)
- 282315 Fedora Security Update for phpMyAdmin (FEDORA-2022-3544c7d20e)
- 502154 Alpine Linux Security Update for phpmyadmin
- 710799 Gentoo Linux phpMyAdmin Multiple Vulnerabilities (GLSA 202311-17)
- 730340 PhpMyAdmin Cross-Site Scripting (XSS) Vulnerability (PMASA-2022-2)
