Description
Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x before 3.1.3.2 allows remote attackers to inject arbitrary PHP code into configuration files.
Remediation
References
Related Vulnerabilities
Ruby on Rails CVE-2013-0277 Vulnerability (CVE-2013-0277)
WordPress Plugin WooCommerce Cross-Site Scripting (5.1.0)
Drupal Core 5.x Local File Inclusion (5.0 - 5.15)
WordPress Plugin WP Crontrol Cross-Site Scripting (1.2.3)
WordPress Plugin MasterStudy LMS-for Online Courses and Education Privilege Escalation (3.3.1)