Multiple XSS vulnerabilites in phpmyadmin, see link for full details. Original advisory is here:
Tom please bump to p3.
p3 now in portage, stable on x86.
Thx Tom. Arches please test and mark p3 stable.
Stable on hppa.
Marked stable on ppc.
I vote "no GLSA" as XSS exploit on an internal administration application is so unlikely...
I tend to vote for a GLSA.
Since phpadmin is pretty widely used and I'm not sure if everyone is only using it for internal access, I would vote for a GLSA too.
OK ok :)
GLSA drafted; security, please review.