diff -Nur phpmyadmin-3.3.7.orig/pmd_pdf.php phpmyadmin-3.3.7/pmd_pdf.php
--- phpmyadmin-3.3.7.orig/pmd_pdf.php	2010-09-07 18:35:56.000000000 +0200
+++ phpmyadmin-3.3.7/pmd_pdf.php	2014-07-09 21:09:46.000000000 +0200
@@ -6,6 +6,13 @@
  * @package phpMyAdmin-Designer
  */
 
+ /**
+  * Validate vulnerable POST parameters
+  */
+if (isset($_POST['scale']) && ! PMA_isValid($_POST['scale'], 'numeric')) {
+     die('Attack stopped');
+}
+
 /**
  *
  */