Unrated severityNVD Advisory· Published Apr 25, 2007· Updated Jun 16, 2026
CVE-2007-2245
CVE-2007-2245
Description
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.10.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the fieldkey parameter to browse_foreigners.php or (2) certain input to the PMA_sanitize function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:phpmyadmin:phpmyadmin:2.10.1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpmyadmin:phpmyadmin:2.10.1.0:*:*:*:*:*:*:*
- (no CPE)range: <2.10.1.0
Patches
Vulnerability mechanics
References
9- secunia.com/advisories/24952nvdVendor Advisory
- osvdb.org/35050nvd
- secunia.com/advisories/26733nvd
- www.mandriva.com/security/advisoriesnvd
- www.phpmyadmin.net/ChangeLog.txtnvd
- www.phpmyadmin.net/home_page/downloads.phpnvd
- www.us.debian.org/security/2007/dsa-1370nvd
- www.vupen.com/english/advisories/2007/1508nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/33898nvd
News mentions
0No linked articles in our index yet.