{"id":"CVE-2013-4995","details":"Cross-site scripting (XSS) vulnerability in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted SQL query that is not properly handled during the display of row information.","modified":"2026-04-16T01:43:52.806469319Z","published":"2013-07-31T13:20:08Z","withdrawn":"2026-01-27T04:11:46.908389Z","related":["openSUSE-SU-2024:10054-1"],"references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/59832"},{"type":"ADVISORY","url":"http://www.phpmyadmin.net/home_page/security/PMASA-2013-8.php"},{"type":"WEB","url":"http://www.securityfocus.com/bid/61510"}],"schema_version":"1.7.3"}