VULNERABILITIES / FIXES - December 14, 2012
by Carol~ - 12/14/12 8:55 AM
WordPress Portable phpMyAdmin Plugin Security Bypass Security Issue
Release Date : 2012-12-14
Criticality level : Moderately critical
Impact : Security Bypass
Where : From remote
Solution Status : Vendor Patch
Software: WordPress Portable phpMyAdmin Plugin 1.x
A security issue has been reported in the Portable phpMyAdmin plugin for WordPress, which can be exploited by malicious people to bypass certain security restrictions.
The security issue is caused due to the application not verifying permissions and can be exploited to access the phpMyAdmin interface.
The security issue is reported in versions prior to 1.3.1.
Update to version 1.3.1.
Provided and/or discovered by:
Reported by the vendor.