{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2009-07-01T13:00:01Z",
  "id": "CVE-2009-2284",
  "details": "Cross-site scripting (XSS) vulnerability in phpMyAdmin before 3.2.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted SQL bookmark.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/35649"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/35715"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:192"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.phpmyadmin.net/home_page/security/PMASA-2009-5.php"
    },
    {
      "type": "FIX",
      "url": "http://www.phpmyadmin.net/home_page/security/PMASA-2009-5.php"
    },
    {
      "type": "WEB",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00150.html"
    },
    {
      "type": "WEB",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00152.html"
    },
    {
      "type": "WEB",
      "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00256.html"
    }
  ]
}