CVE-2008-3456Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2008-3456 | First vendor Publication | 2008-08-04 |
| Vendor | Cve | Last vendor Modification | 2011-03-07 |
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 6.4 | Attack Range | Network |
| Cvss Impact Score | 4.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentification | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3456 |
CWE : Common Weakness Enumeration
| id | Name |
|---|---|
| CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 47486 | phpMyAdmin setup.php Cross-Frame Scripting |
Internal Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2013-05-11 00:22:42 |
|
(High)
