Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-r8b5-qubu-9bgp
Vulnerability ID VCID-r8b5-qubu-9bgp
Aliases CVE-2010-4329
Summary Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton function in libraries/common.lib.php in the database (db) search script in phpMyAdmin 2.11.x before 2.11.11.1 and 3.x before 3.3.8.1 allows remote attackers to inject arbitrary web script or HTML via a crafted request.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.0072 https://api.first.org/data/v1/epss?cve=CVE-2010-4329
epss 0.0072 https://api.first.org/data/v1/epss?cve=CVE-2010-4329
epss 0.0072 https://api.first.org/data/v1/epss?cve=CVE-2010-4329
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2010-4329
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4329
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.72854
EPSS Score 0.0072
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:10.357426+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0