CVE-2001-1060

phpMyAdmin <2.2.0rc3 - Command Injection

Title source: llm
STIX 2.1

Description

phpMyAdmin 2.2.0rc3 and earlier allows remote attackers to execute arbitrary commands by inserting them into (1) the strCopyTableOK argument in tbl_copy.php, or (2) the strRenameTableOK argument in tbl_rename.php.

References (3)

Core 3
Core References
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/3121
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/200596

Scores

EPSS 0.0098
EPSS Percentile 77.0%

Details

Status published
Products (13)
phpmyadmin/phpmyadmin 2.0
phpmyadmin/phpmyadmin 2.0.1
phpmyadmin/phpmyadmin 2.0.2
phpmyadmin/phpmyadmin 2.0.3
phpmyadmin/phpmyadmin 2.0.4
phpmyadmin/phpmyadmin 2.0.5
phpmyadmin/phpmyadmin 2.1
phpmyadmin/phpmyadmin 2.1.1
phpmyadmin/phpmyadmin 2.1.2
phpmyadmin/phpmyadmin 2.2_pre1
... and 3 more
Published Jul 31, 2001
Tracked Since Feb 18, 2026