CVE-2007-0341
EPSS 1.2%
Description
Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.1 and earlier, when Microsoft Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via a javascript: URI in a CSS style in the convcharset parameter to the top-level URI, a different vulnerability than CVE-2005-0992.
How to fix CVE-2007-0341
To remediate CVE-2007-0341, upgrade the affected package to a fixed version below.
- Debian/phpmyadmin—upgrade to 4:2.9.1.1-2 or later
Is CVE-2007-0341 being exploited?
Low — EPSS is 1.2%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 4:2.9.1.1-2