{"id":"CVE-2005-0567","details":"Multiple PHP remote file inclusion vulnerabilities in phpMyAdmin 2.6.1 allow remote attackers to execute arbitrary PHP code by modifying the (1) theme parameter to phpmyadmin.css.php or (2) cfg[Server][extension] parameter to database_interface.lib.php to reference a URL on a remote web server that contains the code.","modified":"2026-04-10T03:36:55.850405Z","published":"2005-05-02T04:00:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/14382/"},{"type":"ADVISORY","url":"http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-1"},{"type":"FIX","url":"http://secunia.com/advisories/14382/"},{"type":"FIX","url":"http://sourceforge.net/tracker/index.php?func=detail&aid=1149381&group_id=23067&atid=377408"},{"type":"FIX","url":"http://www.securityfocus.com/bid/12645"},{"type":"WEB","url":"http://marc.info/?l=bugtraq&m=110929725801154&w=2"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/19465"}],"schema_version":"1.7.5"}