Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/phpmyadmin@4:2.11.8~rc1-1?distro=trixie
purl pkg:deb/debian/phpmyadmin@4:2.11.8~rc1-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-9wpd-442t-k7f8 Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin before 2.11.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted setup arguments. NOTE: this issue can only be exploited in limited scenarios in which the attacker must be able to modify config/config.inc.php. CVE-2008-3457
VCID-b39m-ve2f-dqcz phpMyAdmin: Cross-site Framing; XSS in setup.php (PMASA-2008-6 - CVE-2008-3456, CVE-2008-3457) CVE-2008-3456

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:26:39.774895+00:00 Debian Importer Fixing VCID-b39m-ve2f-dqcz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:20:00.149461+00:00 Debian Importer Fixing VCID-9wpd-442t-k7f8 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:16:31.632423+00:00 Debian Importer Fixing VCID-b39m-ve2f-dqcz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:26:13.652890+00:00 Debian Importer Fixing VCID-9wpd-442t-k7f8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:49:47.291740+00:00 Debian Importer Fixing VCID-9wpd-442t-k7f8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:49:47.250966+00:00 Debian Importer Fixing VCID-b39m-ve2f-dqcz https://security-tracker.debian.org/tracker/data/json 38.1.0