CVE-2004-2218

Name of the Vulnerable Software and Affected Versions PHPMyWebHosting versions 0.3.4 and earlier

Description The issue allows remote attackers to modify SQL statements via the password parameter in the pmwh.php file. This can be exploited by sending crafted input to the vulnerable endpoint.

Recommendations For PHPMyWebHosting versions 0.3.4 and earlier, update to a version later than 0.3.4 to resolve the issue. As a temporary workaround, consider restricting access to the pmwh.php file to minimize the risk of exploitation. Avoid using the password parameter in the affected endpoint until the issue is resolved.