CVE-2011-2506

Phpmyadmin < 3.3.10.2 - Code Injection

Title source: rule

Description

setup/lib/ConfigGenerator.class.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly restrict the presence of comment closing delimiters, which allows remote attackers to conduct static code injection attacks by leveraging the ability to modify the SESSION superglobal array.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Mango · phpwebappsphp

https://www.exploit-db.com/exploits/17514

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by wofeiwo · pythonwebappsphp

https://www.exploit-db.com/exploits/17510

View Code ZIP pw:eip

References (19)

[Exploit] http://ha.xxor.se/2011/07/phpmyadmin-3x-multiple-remote-code.html

[Product] http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=0fbedaf5fd7a771d0885c6b7385d934fc90d0d7f

[Vendor Advisory] http://secunia.com/advisories/45139

[Third Party Advisory] http://secunia.com/advisories/45292

[Third Party Advisory] http://secunia.com/advisories/45315

[Third Party Advisory] http://securityreason.com/securityalert/8306

[Various Sources] http://typo3.org/teams/security/security-bulletins/typo3-sa-2011-008/

[Exploit] http://www.exploit-db.com/exploits/17514/

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2011:124

[Third Party Advisory, VDB Entry] http://www.osvdb.org/73612

[Patch, Vendor Advisory] http://www.phpmyadmin.net/home_page/security/PMASA-2011-6.php

[Various Sources] http://www.xxor.se/advisories/phpMyAdmin_3.x_Multiple_Remote_Code_Executions.txt

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/518804/100/0/threaded

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062719.html

[Third Party Advisory] http://www.debian.org/security/2011/dsa-2286

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/28/2

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/28/6

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/28/8

[Mailing List] http://www.openwall.com/lists/oss-security/2011/06/29/11

Scores

EPSS 0.3368

EPSS Percentile 97.0%

Details

CWE

CWE-94

Status published

Products (35)

phpmyadmin/phpmyadmin 3.0.0 (4 CPE variants)

phpmyadmin/phpmyadmin 3.0.1 (2 CPE variants)

phpmyadmin/phpmyadmin 3.0.1.1

phpmyadmin/phpmyadmin 3.1.0 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.1 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.2 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.3 (2 CPE variants)

phpmyadmin/phpmyadmin 3.1.3.1

phpmyadmin/phpmyadmin 3.1.3.2

phpmyadmin/phpmyadmin 3.1.4 (2 CPE variants)

... and 25 more

Published Jul 14, 2011

Tracked Since Feb 18, 2026