Description

phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg['Servers'] variables.

Remediation

References

CVE-2004-2632

Related Vulnerabilities

Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.14)

WordPress Plugin WP Maintenance Mode & Site Under Construction Cross-Site Request Forgery (1.8.2)

WordPress Plugin Catch Sticky Menu Security Bypass (1.6.3)

TYPO3 Improper Authentication Vulnerability (CVE-2009-3635)

Oracle JRE Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0422)

Severity

High

Classification

CVE-2004-2632

Tags

Missing Update Known Vulnerabilities