Unrated severityNVD Advisory· Published Apr 18, 2006· Updated Jun 16, 2026
CVE-2006-1804
CVE-2006-1804
Description
SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to execute arbitrary SQL commands via the sql_query parameter.
Affected products
4cpe:2.3:a:phpmyadmin:phpmyadmin:2.7.0_pl1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:phpmyadmin:phpmyadmin:2.7.0_pl1:*:*:*:*:*:*:*
- cpe:2.3:a:phpmyadmin:phpmyadmin:2.8.0.3:*:*:*:*:*:*:*
- (no CPE)range: =2.7.0-pl1
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.