CVSROOT: /cvs
Module name: ports
Changes by: will...@cvs.openbsd.org 2009/06/27 20:37:39
Modified files:
www/phpmyadmin : Tag: OPENBSD_4_5 Makefile distinfo
Log message:
SECURITY FIX:
"Setup script used to generate configuration can be fooled using
a crafted POST request to include arbitrary PHP code in generated
configuration file. Combined with ability to save files on server, this
can allow unauthenticated users to execute arbitrary PHP code."
http://www.phpmyadmin.net/home_page/security/PMASA-2009-3.php
ok robert@
