Description

SQL injection vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to execute arbitrary SQL commands via the db parameter.

Remediation

References

CVE-2007-5976

Related Vulnerabilities

WordPress 6.3.x Multiple Vulnerabilities (6.3 - 6.3.4)

WebLogic CVE-2023-22069 Vulnerability (CVE-2023-22069)

WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.23.2)

MySQL CVE-2019-2819 Vulnerability (CVE-2019-2819)

WordPress Plugin Redirection Multiple Cross-Site Scripting Vulnerabilities (2.2.11)

Severity

Medium

Classification

CVE-2007-5976 CWE-138

Tags

Missing Update Known Vulnerabilities