CVE-2018-12581: XSS in Designer feature¶ A Cross-Site Scripting vulnerability was found in the Designer feature, where an attacker can deliver a payload to a user through a specially-crafted database name. Affected Versions:¶ phpMyAdmin versions prior to 4.8.2.