CVE-2007-5976

Publication date

2007-11-15 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in db_create.php in phpMyAdmin before 2.11.2.1 allows remote authenticated users with CREATE DATABASE privileges to execute arbitrary SQL commands via the db parameter.