Summary
phpMyAdmin is prone to a security-bypass vulnerability that affects bookmarks.
Successfully exploiting this issue allows a remote attacker to bypass certain security restrictions and perform unauthorized actions.
Versions prior to phpMyAdmin 3.3.9.2 and 2.11.11.3 are vulnerable.
Solution
Updates are available. Please see the references for details.
References
Severity
Classification
-
CVE CVE-2011-0987 -
CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related Vulnerabilities
- Apache ActiveMQ Source Code Information Disclosure Vulnerability
- Apache Tomcat NIO Connector Denial of Service Vulnerability
- Adobe ColdFusion Multiple Path Disclosure Vulnerabilities
- Apache Archiva Home Page Cross-Site Scripting vulnerability
- Apache Web Server ETag Header Information Disclosure Weakness