FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

phpmyadmin -- cross site request forgery vulnerabilities

Affected packages
phpMyAdmin < 2.11.7.1

Details

VuXML ID 35e54755-54e4-11dd-ad8b-0030843d3802
Discovery 2008-07-15
Entry 2008-07-18
Modified 2008-09-17

A phpMyAdmin security announcement:

A logged-in user, if abused into clicking a crafted link or loading an attack page, would create a database he did not intend to, or would change his connection character set.

[source]

References

URL http://secunia.com/advisories/31115/
URL http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2008-5

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.