Oval Definition:
oval:com.ubuntu.cosmic:def:20162045000
Revision Date
:
2016-02-19
Version
:
1
Title
:
CVE-2016-2045 on Ubuntu 18.10 (cosmic) - low.
Description
:
Cross-site scripting (XSS) vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2016-2045
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
NOT
While related to the CVE in some way, the 'phpmyadmin' package in cosmic is not affected (note: '4:4.5.4-1').
BACK