CVE-2011-2507
phpMyAdmin 3.x < 3.3.10.2 / 3.4.x < 3.4.3.1 - Remote Code Execution via PREG_REPLACE_EVAL
Title source: llmDescription
libraries/server_synchronize.lib.php in the Synchronize implementation in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly quote regular expressions, which allows remote authenticated users to inject a PCRE e (aka PREG_REPLACE_EVAL) modifier, and consequently execute arbitrary PHP code, by leveraging the ability to modify the SESSION superglobal array.
References (20)
Core 20
Core References
Various Sources x_refsource_misc
http://www.xxor.se/advisories/phpMyAdmin_3.x_Multiple_Remote_Code_Executions.txt
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/06/28/2
Various Sources x_refsource_confirm
http://typo3.org/teams/security/security-bulletins/typo3-sa-2011-008/
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45292
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/06/28/6
Patch, Vendor Advisory x_refsource_confirm
http://www.phpmyadmin.net/home_page/security/PMASA-2011-7.php
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/06/28/8
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2011:124
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/8306
Product x_refsource_confirm
http://phpmyadmin.git.sourceforge.net/git/gitweb.cgi?p=phpmyadmin/phpmyadmin%3Ba=commit%3Bh=69fb0f8e7dc38075427aceaf09bcac697d0590ff
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45139
Exploit x_refsource_misc
http://ha.xxor.se/2011/07/phpmyadmin-3x-pregreplace-rce-poc.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2011/dsa-2286
Various Sources x_refsource_misc
http://0x6a616d6573.blogspot.com/2011/07/phpmyadmin-fud.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/518804/100/0/threaded
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/06/29/11
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/73613
Exploit x_refsource_misc
http://ha.xxor.se/2011/07/phpmyadmin-3x-multiple-remote-code.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/45315
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062719.html
Scores
EPSS
0.0374
EPSS Percentile
88.2%
Details
CWE
CWE-94
Status
published
Products (34)
phpmyadmin/phpmyadmin
3.0.0 (4 CPE variants)
phpmyadmin/phpmyadmin
3.0.1 (2 CPE variants)
phpmyadmin/phpmyadmin
3.0.1.1
phpmyadmin/phpmyadmin
3.1.0 (2 CPE variants)
phpmyadmin/phpmyadmin
3.1.1 (2 CPE variants)
phpmyadmin/phpmyadmin
3.1.2 (2 CPE variants)
phpmyadmin/phpmyadmin
3.1.3 (2 CPE variants)
phpmyadmin/phpmyadmin
3.1.3.1
phpmyadmin/phpmyadmin
3.1.3.2
phpmyadmin/phpmyadmin
3.1.4 (2 CPE variants)
... and 24 more
Published
Jul 14, 2011
Tracked Since
Feb 18, 2026