Description
phpMyAdmin 2.6.1 does not properly grant permissions on tables with an underscore in the name, which grants remote authenticated users more privileges than intended.
Remediation
References
Related Vulnerabilities
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0473)
OpenSSL Resource Management Errors Vulnerability (CVE-2012-1165)
MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)
Internet Information Services Other Vulnerability (CVE-1999-0449)
WordPress Plugin Wordpress Forms Multiple Vulnerabilities (0.2.7.1)