VDB
CVE-2005-3665
CVE-2005-3665
PUBLISHED
CVSS 4.300000190734863 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.7.0 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.
EPSS 1.12% · 78.6th percentile
Risk Scores
CVSS 2.0
4.300000190734863
EPSS Score
1.12%
78.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| phpmyadmin | phpmyadmin | *, 2.0, 2.0.1 |
| n/a | n/a | n/a |
Timeline
- Dec 8, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- SUSE-SA:2006:004 vendor-advisory
- http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-8 url
- GLSA-200512-03 vendor-advisory
- DSA-1207 vendor-advisory
- 22781 third-party-advisory
- 15735 vdb
- 17957 third-party-advisory
- ADV-2005-2772 vdb
- 18618 third-party-advisory
- 17895 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2005-3665 advisory