Launchpad CVE tracker

CVE 2008-3456

phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack.

Related bugs and status

CVE-2008-3456 (Candidate) is related to these bugs:

Bug #259839: Please sync phpmyadmin 4:2.11.8.1-1 (universe) from Debian unstable (main).

Summary				In	Importance	Status
	259839	Please sync phpmyadmin 4:2.11.8.1-1 (universe) from Debian unstable (main).		phpmyadmin (Ubuntu)	Wishlist	Fix Released

Bug #306699: please sync phpmyadmin for intrepid with 4:2.11.8.1-5 from debian stable

Summary				In	Importance	Status
	306699	please sync phpmyadmin for intrepid with 4:2.11.8.1-5 from debian stable		phpmyadmin (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-3456

References