Red Hat Bugzilla – Bug 385881
CVE-2007-5976 db_create SQL Injection
Last modified: 2007-11-21 22:37:32 EST
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-5976 to the following vulnerability:
SQL injection vulnerability in db_create.php in phpMyAdmin before 188.8.131.52 allows remote authenticated users with CREATE DATABASE privileges to execute arbitrary SQL commands via the db parameter.
phpMyAdmin-184.108.40.206-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
phpMyAdmin-220.127.116.11-1.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.