CVE-2012-5469

EXPLOITED

Portable phpMyAdmin <1.3.1 - Auth Bypass

Title source: llm

Description

The Portable phpMyAdmin plugin before 1.3.1 for WordPress allows remote attackers to bypass authentication and obtain phpMyAdmin console access via a direct request to wp-content/plugins/portable-phpmyadmin/wp-pma-mod.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Mark Stanislav · textwebappsphp

https://www.exploit-db.com/exploits/23356

View Code ZIP pw:eip

References (2)

[Exploit] http://archives.neohapsis.com/archives/bugtraq/2012-12/0092.html

[Product] http://wordpress.org/extend/plugins/portable-phpmyadmin/changelog/

Scores

EPSS 0.0183

EPSS Percentile 83.0%

Details

VulnCheck KEV 2022-05-11

CWE

CWE-264

Status published

Products (26)

phpmyadmin/phpmyadmin 1.0.0

phpmyadmin/phpmyadmin 1.0.1

phpmyadmin/phpmyadmin 1.0.2

phpmyadmin/phpmyadmin 1.0.3

phpmyadmin/phpmyadmin 1.0.4

phpmyadmin/phpmyadmin 1.0.5

phpmyadmin/phpmyadmin 1.0.6 (2 CPE variants)

phpmyadmin/phpmyadmin 1.0.7

phpmyadmin/phpmyadmin 1.0.8

phpmyadmin/phpmyadmin 1.1

... and 16 more

Published Dec 20, 2012

Tracked Since Feb 18, 2026