Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-x1jp-g4k8-mkdh
Vulnerability ID VCID-x1jp-g4k8-mkdh
Aliases CVE-2011-4780
Summary Multiple cross-site scripting (XSS) vulnerabilities in libraries/display_export.lib.php in phpMyAdmin 3.4.x before 3.4.9 allow remote attackers to inject arbitrary web script or HTML via crafted URL parameters, related to the export panels in the (1) server, (2) database, and (3) table sections.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00475 https://api.first.org/data/v1/epss?cve=CVE-2011-4780
epss 0.00475 https://api.first.org/data/v1/epss?cve=CVE-2011-4780
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2011-4780
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4780
GLSA-201201-01 https://security.gentoo.org/glsa/201201-01
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.65195
EPSS Score 0.00475
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:11.353427+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0