Bug ID	1082188
Summary	VUL-1: CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php
Classification	openSUSE
Product	openSUSE Distribution
Version	Leap 42.3
Hardware	Other
URL	https://smash.suse.de/issue/200566/
OS	Other
Status	NEW
Severity	Minor
Priority	P5 - None
Component	Security
Assignee	security-team@suse.de
Reporter	kbabioch@suse.com
QA Contact	security-team@suse.de
Found By	Security Response Team
Blocker	---

rh#1547748

Cross-site scripting (XSS) vulnerability in db_central_columns.php in
phpMyAdmin
before 4.7.8 allows remote authenticated users to inject arbitrary web script
or
HTML via a crafted URL.

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1547748
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-7260
https://www.phpmyadmin.net/security/PMASA-2018-1/
https://github.com/phpmyadmin/phpmyadmin/commit/d2886a3

You are receiving this mail because:

You are on the CC list for the bug.