CVE-2013-5003 in phpMyAdmininfo

Summary

Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pmd_pdf.php or (2) the pdf_page_number parameter to schema_export.php.

Reservation

07/29/2013

Disclosure

07/31/2013

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
9794	phpMyAdmin Parameter Validation schema_export.php sql injection	89	Not defined	Official fix	CVE-2013-5003
9793	phpMyAdmin Parameter Validation pmd_pdf.php sql injection	89	Not defined	Official fix	CVE-2013-5003

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Might our Artificial Intelligence support you?

Check our Alexa App!