Remote Code Execution via register_globals Emulation in phpMyAdmin 2.7.0 rc1

Remote Code Execution via register_globals Emulation in phpMyAdmin 2.7.0 rc1

CVE-2005-4079 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The register_globals emulation in phpMyAdmin 2.7.0 rc1 allows remote attackers to exploit other vulnerabilities in phpMyAdmin by modifying the import_blacklist variable in grab_globals.php, which can then be used to overwrite other variables.

Learn more about our Web Application Penetration Testing UK.