← back
CVE-2008-3456

CVE-2008-3456

EPSS 2.4%
phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.htmlhttp://secunia.com/advisories/31263http://secunia.com/advisories/31312http://secunia.com/advisories/32834https://exchange.xforce.ibmcloud.com/vulnerabilities/44050https://www.redhat.com/archives/fedora-package-announce/2008-July/msg01239.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-July/msg01316.htmlhttp://www.debian.org/security/2008/dsa-1641http://www.mandriva.com/security/advisories?name=MDVSA-2008:202http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-6http://www.securityfocus.com/bid/30420http://www.vupen.com/english/advisories/2008/2226/references