phpLDAPadmin is prone to a remote PHP code-injection vulnerability. An attacker can exploit this issue to inject and execute arbitrary PHP code in the context of the affected application. This may facilitate a compromise of the application and the underlying system other attacks are also possible. phpLDAPadmin versions 1.2.0 through 1.2.1.1 are vulnerable.

• http://phpldapadmin.sourceforge.net/
• http://www.securityfocus.com/bid/50331

---

Updated on 2015-03-25