7.5

CVE-2005-0567

EPSS 1.22%
Published 02.05.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Multiple PHP remote file inclusion vulnerabilities in phpMyAdmin 2.6.1 allow remote attackers to execute arbitrary PHP code by modifying the (1) theme parameter to phpmyadmin.css.php or (2) cfg[Server][extension] parameter to database_interface.lib.php to reference a URL on a remote web server that contains the code.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Phpmyadmin ≫ Phpmyadmin Version2.6.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.22%	0.782

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://marc.info/?l=bugtraq&m=110929725801154&w=2

http://secunia.com/advisories/14382/

Patch

Vendor Advisory

http://sourceforge.net/tracker/index.php?func=detail&aid=1149381&group_id=23067&atid=377408

Patch

http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-1

Vendor Advisory

http://www.securityfocus.com/bid/12645

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/19465

https://nvd.nist.gov/vuln/detail/CVE-2005-0567

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-0567

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-0567

EUVD