CVE-2005-0543

Name: CVE-2005-0543
Creator: NVD / NIST
Published: 2005-02-24T05:00:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.96%

Last modified Jun 16, 2026

CVE-2005-0543 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.6.1 allows remote attackers to inject arbitrary HTML and web script via (1) the strServer, cfg[BgcolorOne], or strServerChoice parameters in select_server.lib.php, (2) the bg_color or row_no parameters in display_tbl_links.lib.php, the left_font_family parameter in theme_left.css.php, or the right_font_family parameter in theme_right.css.php.. EPSS estimates a 3.96% chance of exploitation in the next 30 days.

Description

Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.6.1 allows remote attackers to inject arbitrary HTML and web script via (1) the strServer, cfg[BgcolorOne], or strServerChoice parameters in select_server.lib.php, (2) the bg_color or row_no parameters in display_tbl_links.lib.php, the left_font_family parameter in theme_left.css.php, or the right_font_family parameter in theme_right.css.php.

Metrics

EPSS Probability

3.96%

89.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-79

Affected Software

Vendor	Product	Versions
Phpmyadmin	Phpmyadmin	2.6.0_pl2
Phpmyadmin	Phpmyadmin	2.6.0_pl3
Phpmyadmin	Phpmyadmin	2.6.1
Phpmyadmin	Phpmyadmin	2.6.1_rc1

References

http://marc.info/?l=bugtraq&m=110929725801154&w=2Third Party Advisory
http://secunia.com/advisories/14382Patch, Vendor Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=1149383&group_id=23067&atid=377408Exploit, Issue Tracking
http://www.gentoo.org/security/en/glsa/glsa-200503-07.xmlPatch, Vendor Advisory
http://www.securityfocus.com/bid/12644Patch, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19462
http://marc.info/?l=bugtraq&m=110929725801154&w=2Third Party Advisory
http://secunia.com/advisories/14382Patch, Vendor Advisory
http://sourceforge.net/tracker/index.php?func=detail&aid=1149383&group_id=23067&atid=377408Exploit, Issue Tracking
http://www.gentoo.org/security/en/glsa/glsa-200503-07.xmlPatch, Vendor Advisory
http://www.securityfocus.com/bid/12644Patch, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19462

Timeline

Published: Feb 24, 2005
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2005-0543?

How severe is CVE-2005-0543?

Severity scoring for CVE-2005-0543 is pending analysis. The EPSS model estimates a 3.96% probability of exploitation in the next 30 days.

How do I fix CVE-2005-0543?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2005-0543?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST