FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

phpmyadmin -- increased privilege vulnerability

Affected packages
phpmyadmin < 2.6.1.3
phpMyAdmin < 2.6.1.3

Details

VuXML ID 6192ae3d-9595-11d9-a9e0-0001020eed82
Discovery 2005-02-01
Entry 2005-03-15

The phpMyAdmin team reports:

Escaping of the "_" character was not properly done, giving a wildcard privilege when editing db-specific privileges with phpMyAdmin.

[source]

References

CVE Name CVE-2005-0653
URL http://sourceforge.net/forum/forum.php?forum_id=450948
URL http://sourceforge.net/tracker/index.php?func=detail&aid=1113788&group_id=23067&atid=377408

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.