CVE-2013-5003

EPSS 0.37%

發布日:2013/7/31修改日:2026/5/7

也稱為:DEBIAN-CVE-2013-5003

描述

Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pmd_pdf.php or (2) the pdf_page_number parameter to schema_export.php.

受影響套件(1)

Debian/phpmyadminfrom 0, < 4:4.0.4.2-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-5003