CVE-2006-6943

phpMyAdmin < 2.9.1 - Path Disclosure via Multiple Scripts and Parameters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6943. PoCs published by laurent gaffie.

AI-analyzed exploit summary This is a writeup describing multiple input-validation vulnerabilities in phpMyAdmin, including HTML injection, XSS, and information disclosure. It lists various endpoints that are vulnerable but does not provide executable exploit code.

Description

PhpMyAdmin before 2.9.1.1 allows remote attackers to obtain the full server path via direct requests to (a) scripts/check_lang.php and (b) themes/darkblue_orange/layout.inc.php; and via the (1) lang[], (2) target[], (3) db[], (4) goto[], (5) table[], and (6) tbl_group[] array arguments to (c) index.php, and the (7) back[] argument to (d) sql.php; and an invalid (8) sort_by parameter to (e) server_databases.php and (9) db parameter to (f) db_printview.php.

Exploits (1)

exploitdb WRITEUP VERIFIED

by laurent gaffie · textwebappsphp

https://www.exploit-db.com/exploits/29062

View Code ZIP pw:eip

This is a writeup describing multiple input-validation vulnerabilities in phpMyAdmin, including HTML injection, XSS, and information disclosure. It lists various endpoints that are vulnerable but does not provide executable exploit code.

Classification

Writeup 90%

Attack Type

Xss | Info Leak

Complexity

Trivial

Reliability

Theoretical

Target: phpMyAdmin (all versions)

No auth needed

Prerequisites: Access to vulnerable phpMyAdmin instance

MITRE ATT&CK

T1059.007 - JavaScript T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Patch, Vendor Advisory x_refsource_confirm

http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2006-8

Third Party Advisory mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=116370414309444&w=2

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/21137

Scores

EPSS 0.0439

EPSS Percentile 90.0%

Details

CWE

CWE-20

Status published

Products (9)

phpmyadmin/phpmyadmin 2.9.0

phpmyadmin/phpmyadmin 2.9.0.1

phpmyadmin/phpmyadmin 2.9.0.2

phpmyadmin/phpmyadmin 2.9.0.3

phpmyadmin/phpmyadmin 2.9.0_beta1

phpmyadmin/phpmyadmin 2.9.0_rc1

phpmyadmin/phpmyadmin 2.9.1_rc1

phpmyadmin/phpmyadmin 2.9.1_rc2

phpmyadmin/phpmyadmin < 2.9.1

Published Jan 19, 2007

Tracked Since Feb 18, 2026