CVE-2008-3456 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2008-3456 Interim 1 5 2023-12-09T02:08:46Z current 2021-05-30T12:43:26Z 2023-12-09T02:08:46Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2008-3456 phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BLYDQ2NBC4T3JBPATZ23TNPG4S2NAS4M/#BLYDQ2NBC4T3JBPATZ23TNPG4S2NAS4M E-Mail link for SUSE-SR:2008:026 https://www.suse.com/support/security/rating/ SUSE Security Ratings phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from using frames that point to pages in other domains, which makes it easier for remote attackers to conduct spoofing or phishing activities via a cross-site framing attack. CVE-2008-3456 moderate 6.4 AV:N/AC:L/Au:N/C:N/I:P/A:P