Description

PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.

Remediation

References

CVE-2005-3299

Related Vulnerabilities

WordPress Plugin Contact Form 7 International Sms Integration Cross-Site Scripting (1.2)

WordPress Plugin Helpful Security Bypass (4.5.14)

Apache HTTP Server Other Vulnerability (CVE-2003-0192)

WordPress Plugin Header Footer Code Manager SQL Injection (1.1.13)

Opencart Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-13067)

Severity

Medium

Classification

CVE-2005-3299

Tags

Missing Update Known Vulnerabilities