DESCRIPTION: A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious users to bypass certain security restrictions. The vulnerability is caused due to an input validation error in the handling of "_" characters in the privileges management module where users in certain situations can be assigned wildcard permissions. This can be exploited to bypass certain security restrictions. SOLUTION: Update to version 2.6.1-pl3. http://sourceforge.net/project/showfiles.php?group_id=23067
Fixed in phpmyadmin-2.6.1_p2-r1 - see Bug 83792 ;-)
*** This bug has been marked as a duplicate of 83792 *** *** This bug has been marked as a duplicate of 83792 ***