Multiple vulnerabilities has been identified in phpMyAdmin allowing malicious people to conduct Cross Site Scripting.

The problem is that multiple scripts don't verify user input. This allows malicious characters to be returned to the user, which can be exploited to conduct a Cross Site Scripting attack.

Vulnerable scripts:

sql.php / sql.php3
pdf_schema.php
pdf_pages.php
ldi_table.php
mult_submits.inc.php
db_datadict.php
db_printview.php
read_dump.php

phpMyAdmin uses cookies with the username and password in plain text to verify authenticated users. This is an insecure method.

Furthermore, a directory traversal vulnerability has been identified in:
/db_details_importdocsql.php?submit_show=true&do=import&docpath=../../../

This has been reported to affect all versions including the latest 2.5.1 and 2.5.2-dev. However, this is not correct according to the phpMyAdmin team.

Solution
Reportedly, the directory traversal vulnerability was already fixed in version 2.5.0. Version 2.5.2-dev now encrypts passwords using the blowfish algorithm. Most of the reported Cross-Site Scripting vulnerabilities was already fixed in version 2.5.0 - the rest will be addressed in the upcoming 2.5.2 release.
Further details available in Customer Area

Provided and/or discovered by
Lorenzo Hernandez Garcia-Hierro

Changelog
Further details available in Customer Area

Original Advisory
http://security.novappc.com/more.php?id=7_0_1_0_M

Deep Links
Links available in Customer Area