Description

phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external transformations enabled, allows remote attackers to execute arbitrary commands via shell metacharacters.

Remediation

References

CVE-2004-1147

Related Vulnerabilities

WordPress Plugin Visual Composer Website Builder, Landing Page Builder, Custom Theme Builder, Maintenance Mode & Coming Soon Pages Multiple Cross-Site Scripting Vulnerabilities (26.0)

WordPress Plugin Wu-Rating Cross-Site Scripting (1.0 12319)

WordPress Plugin Companion Revision Manager-Revision Control Unspecified Vulnerability (1.3)

WebLogic CVE-2021-2018 Vulnerability (CVE-2021-2018)

WordPress Plugin DethemeKit For Elementor Multiple Cross-Site Scripting Vulnerabilities (1.5.5.4)

Severity

Critical

Classification

CVE-2004-1147

Tags

Missing Update Known Vulnerabilities