CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2009/06/27 20:37:39
Modified files:
www/phpmyadmin : Tag: OPENBSD_4_5 Makefile distinfo
Log message:
SECURITY FIX:
"Setup script used to generate configuration can be fooled using
a crafted POST request to include arbitrary PHP code in generated
configuration file. Combined with ability to save files on server, this
can allow unauthenticated users to execute arbitrary PHP code."
http://www.phpmyadmin.net/home_page/security/PMASA-2009-3.php
ok robert@
