phpMyAdmin < 2.6.0-p12 Multiple RCE
High Nessus Network Monitor Plugin ID 2421
SynopsisThe remote host is vulnerable to multiple arbitrary 'command insertion' flaws.
DescriptionThe remote host is running phpMyAdmin, an open-source software written in PHP to handle the administration of MySQL over the Web.
The remote version of this software is vulnerable to arbitrary command execution due to a lack of user-supplied data sanitization.
SolutionUpgrade to phpMyAdmin 2.6.0-pl2 or higher.