Launchpad.net

CVE 2006-1804

SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote attackers to execute arbitrary SQL commands via the sql_query parameter.

CVE-2006-1804 (Candidate) is related to these bugs:

Bug #82003: phpmyadmin has several security bugs

		In	Importance	Status
82003	phpmyadmin has several security bugs	phpmyadmin (Ubuntu)	Undecided	Fix Released
82003	phpmyadmin has several security bugs	phpmyadmin (Ubuntu Dapper)	Undecided	Won't Fix
82003	phpmyadmin has several security bugs	phpmyadmin (Ubuntu Feisty)	Undecided	Fix Released
82003	phpmyadmin has several security bugs	phpmyadmin (Ubuntu Edgy)	Undecided	Won't Fix
82003	phpmyadmin has several security bugs	phpMyAdmin	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.