CVE-2013-5029 – Gentoo Linux Security Advisory 201311-02

https://notcve.org/view.php?id=CVE-2013-5029

19 Aug 2013 — phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to bypass the clickjacking protection mechanism via certain vectors related to Header.class.php. phpMyAdmin 3.5.x y 4.0.x anterior a 4.0.5, permite a atacantes remotos evitar la protección frente al clickjacking a través de determinados vectores relacionados con Header.class.php. Multiple vulnerabilities have been found in phpMyAdmin, allowing remote authenticated attackers to execute arbitrary code, inject SQL code or conduct other attacks. Ve... • http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00013.html • CWE-20: Improper Input Validation •