CVE-2005-3299

Name of the Vulnerable Software and Affected Versions phpMyAdmin versions 2.6.4 through 2.6.4-pl1

Description The issue allows remote attackers to include local files via the redirect parameter, possibly involving the subform array. This could potentially lead to unauthorized access to sensitive information.

Recommendations For phpMyAdmin versions 2.6.4 through 2.6.4-pl1, consider restricting access to the grab globals.lib.php file until a patch is available. As a temporary workaround, avoid using the redirect parameter in the affected API endpoint until the issue is resolved.