CVE-2011-2505

EXPLOITED

Phpmyadmin < 3.3.10.2 - Code Injection

Title source: rule

Description

libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication feature in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 assigns values to arbitrary parameters referenced in the query string, which allows remote attackers to modify the SESSION superglobal array via a crafted request, related to a "remote variable manipulation vulnerability."

Exploits (3)

exploitdb WORKING POC VERIFIED

by Mango · phpwebappsphp

https://www.exploit-db.com/exploits/17514

View Code ZIP pw:eip

github WORKING POC 6 stars

by Y5neKO · pythonpoc

https://github.com/Y5neKO/ExpAndPoc_Collection/tree/main/CVE-2011-2505

View Code ZIP pw:eip

exploitdb WORKING POC

pythonwebappsphp

https://www.exploit-db.com/exploits/17510

View Code ZIP pw:eip

References (19)

[Various Sources] http://typo3.org/teams/security/security-bulletins/typo3-sa-2011-008/

[Various Sources] http://www.xxor.se/advisories/phpMyAdmin_3.x_Multiple_Remote_Code_Executions.txt

[Exploit] http://ha.xxor.se/2011/07/phpmyadmin-3x-multiple-remote-code.html

[Product] http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=7ebd958b2bf59f96fecd5b3322bdbd0b244a7967

[Vendor Advisory] http://secunia.com/advisories/45139

[Third Party Advisory] http://secunia.com/advisories/45292

[Third Party Advisory] http://secunia.com/advisories/45315

[Third Party Advisory] http://securityreason.com/securityalert/8306

[Exploit] http://www.exploit-db.com/exploits/17514/

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2011:124

[Third Party Advisory, VDB Entry] http://www.osvdb.org/73611

[Patch, Vendor Advisory] http://www.phpmyadmin.net/home_page/security/PMASA-2011-5.php

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/518804/100/0/threaded

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062719.html

[Third Party Advisory] http://www.debian.org/security/2011/dsa-2286

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/28/2

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/28/6

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/28/8

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/29/11

Scores

EPSS 0.3701

EPSS Percentile 97.2%

Details

VulnCheck KEV 2012-01-17

CWE

CWE-94

Status published

Products (35)

phpmyadmin/phpmyadmin 3.0.0 (4 CPE variants)

phpmyadmin/phpmyadmin 3.0.1 (2 CPE variants)

phpmyadmin/phpmyadmin 3.0.1.1

phpmyadmin/phpmyadmin 3.1.0 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.1 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.2 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.3 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.3.1

phpmyadmin/phpmyadmin 3.1.3.2

phpmyadmin/phpmyadmin 3.1.4 (2 CPE variants)

... and 25 more

Published Jul 14, 2011

Tracked Since Feb 18, 2026