VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-2tqn-e8c9-wfc2

Essentials
Severities (36)
References (10)
Severity details (8)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-2tqn-e8c9-wfc2
Aliases	CVE-2010-2958 GHSA-frv8-xjcp-hrm2
Summary	phpMyAdmin Cross-site Scripting vulnerability Cross-site scripting (XSS) vulnerability in libraries/Error.class.php in phpMyAdmin 3.x before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to a PHP backtrace and error messages (aka debugging messages), a different vulnerability than CVE-2010-3056.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-79	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=133a77fac7d31a38703db2099a90c1b49de62e37
generic_textual	MODERATE	http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin;a=commit;h=133a77fac7d31a38703db2099a90c1b49de62e37
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
epss	0.00442	https://api.first.org/data/v1/epss?cve=CVE-2010-2958
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-frv8-xjcp-hrm2
generic_textual	MODERATE	https://github.com/phpmyadmin/composer
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2010-2958
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2010/09/01/2
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2010/09/01/3
generic_textual	MODERATE	http://www.phpmyadmin.net/home_page/security/PMASA-2010-6.php

Reference id	Reference type	URL
		http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=133a77fac7d31a38703db2099a90c1b49de62e37
		http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin;a=commit;h=133a77fac7d31a38703db2099a90c1b49de62e37
		https://api.first.org/data/v1/epss?cve=CVE-2010-2958
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2958
		https://github.com/phpmyadmin/composer
		https://nvd.nist.gov/vuln/detail/CVE-2010-2958
		http://www.openwall.com/lists/oss-security/2010/09/01/2
		http://www.openwall.com/lists/oss-security/2010/09/01/3
		http://www.phpmyadmin.net/home_page/security/PMASA-2010-6.php
GHSA-frv8-xjcp-hrm2		https://github.com/advisories/GHSA-frv8-xjcp-hrm2

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.62332
EPSS Score	0.00442
Published At	July 30, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T09:10:09.284710+00:00	GithubOSV Importer	Import	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-frv8-xjcp-hrm2/GHSA-frv8-xjcp-hrm2.json	37.0.0