Bug

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions prior to 2.8.2 **Description** The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML. This is achieved by manipulating the `table` parameter. **Recommendations** For versions prior to 2.8.2, update to version 2.8.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Claroline version 1.7.7 **Description** The issue allows remote attackers to inject arbitrary HTML or web script via unspecified attack vectors, possibly including API endpoints such as "calendar/myagenda.php", "document/document.php", "phpbb/newtopic.php", "tracking/userLog.php", and "wiki/page.php". **Recommendations** For Claroline version 1.7.7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TikiWiki versions 1.9.3.2 and earlier **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML. The exact attack vectors are not specified. **Recommendations** For TikiWiki versions 1.9.3.2 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TikiWiki versions 1.9.3.2 and earlier **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. The exact attack vectors are not specified. **Recommendations** For TikiWiki versions 1.9.3.2 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.