Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-v7dk-szsy-vfh4
Vulnerability ID VCID-v7dk-szsy-vfh4
Aliases CVE-2008-3456
Summary phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.01706 https://api.first.org/data/v1/epss?cve=CVE-2008-3456
epss 0.01706 https://api.first.org/data/v1/epss?cve=CVE-2008-3456
epss 0.01706 https://api.first.org/data/v1/epss?cve=CVE-2008-3456
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3456.json
https://api.first.org/data/v1/epss?cve=CVE-2008-3456
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3456
456637 https://bugzilla.redhat.com/show_bug.cgi?id=456637
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.82659
EPSS Score 0.01706
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:09.393220+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0