Phpmyadmin · Phpmyadmin · CVE-2010-4480
**Name of the Vulnerable Software and Affected Versions**
PhpMyAdmin versions prior to 3.4.0-beta1
**Description**
The issue allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted BBcode tag containing "@" characters. This can be demonstrated using a tag such as "[a@url@page]" in the error.php file.
**Recommendations**
For versions prior to 3.4.0-beta1, update to version 3.4.0-beta1 or later to resolve the issue.