VulnerableCode Package Details - pkg:deb/debian/phpmyadmin@4:3.4.5-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-kdu8-dzvr-fubc	phpMyAdmin Multiple XSS Vulnerabilities After Inline Editing and Save Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted row that triggers an improperly constructed confirmation message after inline-editing and save operations, related to (1) `js/functions.js` and (2) `js/tbl_structure.js`.	CVE-2011-3591 GHSA-3p87-w3c5-27gf
VCID-vnwc-dh5c-9yex	phpMyAdmin Multiple XSS Vulnerabilities Multiple cross-site scripting (XSS) vulnerabilities in the `PMA_unInlineEditRow` function in js/sql.js in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a (1) database name, (2) table name, or (3) column name that is not properly handled after an inline-editing operation.	CVE-2011-3592 GHSA-5p69-rmx8-7gw7

Vulnerability

Summary

Aliases

VCID-kdu8-dzvr-fubc

phpMyAdmin Multiple XSS Vulnerabilities After Inline Editing and Save Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a crafted row that triggers an improperly constructed confirmation message after inline-editing and save operations, related to (1) `js/functions.js` and (2) `js/tbl_structure.js`.

CVE-2011-3591
GHSA-3p87-w3c5-27gf

VCID-vnwc-dh5c-9yex

phpMyAdmin Multiple XSS Vulnerabilities Multiple cross-site scripting (XSS) vulnerabilities in the `PMA_unInlineEditRow` function in js/sql.js in phpMyAdmin 3.4.x before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via a (1) database name, (2) table name, or (3) column name that is not properly handled after an inline-editing operation.

CVE-2011-3592
GHSA-5p69-rmx8-7gw7

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:04:48.360296+00:00	Debian Importer	Fixing	VCID-vnwc-dh5c-9yex	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:45:11.078612+00:00	Debian Importer	Fixing	VCID-kdu8-dzvr-fubc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:59:35.314500+00:00	Debian Importer	Fixing	VCID-vnwc-dh5c-9yex	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:52:51.214278+00:00	Debian Importer	Fixing	VCID-kdu8-dzvr-fubc	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:49:48.880901+00:00	Debian Importer	Fixing	VCID-vnwc-dh5c-9yex	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:49:48.839167+00:00	Debian Importer	Fixing	VCID-kdu8-dzvr-fubc	https://security-tracker.debian.org/tracker/data/json	38.1.0