CVE-2007-5976

SQL injection vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to execute arbitrary SQL commands via the db parameter.

Date published : 2007-11-14

http://www.securityfocus.com/bid/26512

http://sourceforge.net/project/shownotes.php?release_id=553333