Unrated severityNVD Advisory· Published May 14, 2014· Updated May 6, 2026
CVE-2012-1600
CVE-2012-1600
Description
Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) type of a function.
Affected products
6cpe:2.3:a:phppgadmin_project:phppgadmin:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:phppgadmin_project:phppgadmin:*:*:*:*:*:*:*:*range: <=5.0.3
- cpe:2.3:a:phppgadmin_project:phppgadmin:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:phppgadmin_project:phppgadmin:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:phppgadmin_project:phppgadmin:5.0.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- secunia.com/advisories/48574nvdVendor Advisory
- lists.opensuse.org/opensuse-updates/2012-04/msg00033.htmlnvd
- sourceforge.net/p/phppgadmin/mailman/message/28783470/nvd
- www.openwall.com/lists/oss-security/2012/03/28/11nvd
- www.openwall.com/lists/oss-security/2012/03/29/6nvd
- www.openwall.com/lists/oss-security/2012/03/30/7nvd
- www.osvdb.org/80870nvd
- www.postgresql.org/message-id/4F6B447C.6080204%40dalibo.comnvd
- www.securityfocus.com/bid/52761nvd
- bugzilla.redhat.com/show_bug.cginvd
- exchange.xforce.ibmcloud.com/vulnerabilities/74440nvd
- github.com/phppgadmin/phppgadmin/commit/74174ad639664b52cc1609ede0af8bc403e98a00nvd
- github.com/phppgadmin/phppgadmin/commit/e92a003624609a445c4cf57c9c3d1fcef0eae47cnvd
News mentions
0No linked articles in our index yet.