Summary
phpMyAdmin is prone to a vulnerability that lets attackers execute arbitrary code in the context of the webserver process. This may facilitate unauthorized access or privilege escalation other attacks
are also possible.
Versions prior to phpMyAdmin 3.0.0 or 2.11.10 are vulnerable.
Solution
Updates are available. Please see the references for more information.
References
Severity
Classification
-
CVE CVE-2009-4605 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Adobe ColdFusion Multiple Cross Site Scripting Vulnerabilities
- Apache Rave User Information Disclosure Vulnerability
- Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
- Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability
- Apache ActiveMQ Source Code Information Disclosure Vulnerability