PT-2005-4811 · Phpmyadmin · Phpmyadmin
Stefan Esser
·
Publicado
2005-12-08
·
Atualizado
2018-10-19
·
CVE-2005-4079
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
phpMyAdmin version 2.7.0 rc1
Description
The issue in phpMyAdmin allows remote attackers to exploit other weaknesses by modifying the
import blacklist variable in grab globals.php. This can then be used to overwrite other variables, potentially leading to further exploitation.Recommendations
For phpMyAdmin version 2.7.0 rc1, consider restricting access to the grab globals.php file or modifying the
import blacklist variable to prevent unauthorized changes until a patch is available.Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Phpmyadmin