{"id":"CVE-2013-5003","details":"Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pmd_pdf.php or (2) the pdf_page_number parameter to schema_export.php.","modified":"2026-01-27T04:12:19.462734Z","published":"2013-07-31T13:20:08Z","withdrawn":"2026-01-27T04:12:19.462734Z","related":["MGASA-2013-0238","openSUSE-SU-2024:10054-1"],"references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/59832"},{"type":"ADVISORY","url":"http://www.phpmyadmin.net/home_page/security/PMASA-2013-15.php"},{"type":"WEB","url":"http://www.securityfocus.com/bid/61923"}],"schema_version":"1.7.3"}