PHPMemcachedAdmin versions 1.2.2 and below suffer from a stored cross site scripting vulnerability.
9f91c5c2b7e9ffc8b6dd9013cb665d44484399ca18e398533dfb21443be8115f
CVE-2014-8732
CVSSv2 Vector:
[AV:N/AC:L/Au:N/C:P/I:P/A:P/E:H/RL:U/RC:C]
CVSSv2 Base Score=7.5
CVSSv2 Temp Score=7.5
OWASP Top 10 classification: A3 - Cross Site Scripting
There is a stored xss vulnerability in phpMemcachedAdmin. Most of the user-specified input fields which are displayed on several pages of the application aren't properly escaped (lack of output enconding).
All versions prior and including the current version 1.2.2 are affected as far as we know.