Description

phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg['Servers'] variables.

Remediation

References

CVE-2004-2632

Related Vulnerabilities

WordPress Plugin WP Live Chat Support Pro Arbitrary File Upload (8.0.06)

PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-15161)

TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6148)

Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-39206)

WordPress Plugin Simple Login Log Multiple Vulnerabilities (0.9.3)

Severity

High

Classification

CVE-2004-2632

Tags

Missing Update Known Vulnerabilities