Description
phpMyAdmin before 2.9.1.1 allows remote attackers to bypass Allow/Deny access rules that use IP addresses via false headers.
Remediation
References
Related Vulnerabilities
WordPress Plugin Add Custom Link to WordPress Admin Bar Cross-Site Scripting (1.0)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11588)
WordPress Plugin Gravity Forms Constant Contact Cross-Site Scripting (1.0.5)
Craft CMS Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2026-29069)