Description

The MIME transformation system (transformations/text_plain__external.inc.php) in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.

Remediation

References

CVE-2004-2630

Related Vulnerabilities

ZenCart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4547)

MySQL CVE-2018-3075 Vulnerability (CVE-2018-3075)

MediaWiki Release of Invalid Pointer or Reference Vulnerability (CVE-2022-28203)

WordPress Plugin WP Editor.md Cross-Site Scripting (10.0.1)

WordPress Plugin Csv2WPeC Coupon Arbitrary File Upload (1.1)

Severity

High

Classification

CVE-2004-2630

Tags

Missing Update Known Vulnerabilities