phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2007-5976 - Vulnerability Database

phpMyAdmin

phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2007-5976

Medium

Reference: CVE-2007-5976

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-5976

Title: phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability

Overview:

SQL injection vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to execute arbitrary SQL commands via the db parameter.