Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-g3fk-u3aq-dffu
Vulnerability ID VCID-g3fk-u3aq-dffu
Aliases CVE-2011-3181
Summary Multiple cross-site scripting (XSS) vulnerabilities in the Tracking feature in phpMyAdmin 3.3.x before 3.3.10.4 and 3.4.x before 3.4.4 allow remote attackers to inject arbitrary web script or HTML via a (1) table name, (2) column name, or (3) index name.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00604 https://api.first.org/data/v1/epss?cve=CVE-2011-3181
epss 0.00604 https://api.first.org/data/v1/epss?cve=CVE-2011-3181
epss 0.00604 https://api.first.org/data/v1/epss?cve=CVE-2011-3181
epss 0.00604 https://api.first.org/data/v1/epss?cve=CVE-2011-3181
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2011-3181
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3181
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.69981
EPSS Score 0.00604
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:11.026645+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0