CVE-2005-2869

N/A Unknown

Published: September 08, 2005 Modified: April 16, 2026

Description

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4 allow remote attackers to inject arbitrary web script or HTML via (1) the Username to libraries/auth/cookie.auth.lib.php or (2) the error parameter to error.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/16605

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/17337

Source: cve@mitre.org

http://secunia.com/advisories/17559

Source: cve@mitre.org

http://secunia.com/advisories/17607

Source: cve@mitre.org

http://sourceforge.net/tracker/index.php?func=detail&aid=1240880&group_id=23067&atid=377408

Source: cve@mitre.org

Exploit Vendor Advisory

http://sourceforge.net/tracker/index.php?func=detail&aid=1265740&group_id=23067&atid=377408

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.debian.org/security/2005/dsa-880

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2005_28_sr.html

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2005_66_phpmyadmin.html

Source: cve@mitre.org

http://secunia.com/advisories/16605