PT-2012-5142 · Mylittleadmin+1 · Mylittleadmin+1
Maka666
·
Published
2012-09-25
·
Updated
2012-09-25
·
CVE-2012-4015
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
myLittleAdmin for SQL Server 2000
Description
A cross-site scripting (XSS) issue exists in the management screen of myLittleAdmin for SQL Server 2000, allowing remote attackers to inject arbitrary web script or HTML via crafted database entries.
Recommendations
For myLittleAdmin for SQL Server 2000, update to a version that addresses this issue, as the current version allows for the injection of malicious scripts.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sql Server 2000
Mylittleadmin