Description

PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.

Remediation

References

CVE-2005-3299

Related Vulnerabilities

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2020-25644)

WordPress Plugin Easy2Map Photos Cross-Site Scripting (2.0.6)

WordPress Plugin Easy Coming Soon Cross-Site Scripting (1.8.1)

WordPress Plugin Modern Events Calendar Lite Cross-Site Scripting (5.22.2)

WordPress Plugin HashThemes Demo Importer Security Bypass (1.1.1)

Severity

Medium

Classification

CVE-2005-3299

Tags

Missing Update Known Vulnerabilities