Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, and
possibly 4.1.2, allows remote attackers to inject arbitrary web script or
HTML via certain input available in PHP_SELF in (1) redirect.php, possibly
related to (2) login.php, different vectors than CVE-2007-2865.
Seems the fix from bug 180133 did not completely clean this, the Secunia advisory is updated to show 4.1.2 vulnerable.
Web-Apps and Postgres, please advise.
4.1.3 has been in the tree for a while and should be stabilized then.
Targets: amd64 hppa ppc sparc x86
Stable for HPPA.
Stable on AMD64 :)
I vote NO.
no too and closing.