Vulnerabilities

CVE-2009-1285

by Fred · 16/04/2009

Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files.

Date published : 2009-04-16

http://www.securityfocus.com/bid/34526

http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin/branches/MAINT_3_1_3/phpMyAdmin/setup/lib/ConfigFile.class.php?r1=12248&r2=12301&pathrev=12342

Similar

Tags: Cybersecurity Alert