漏洞描述
phpMyAdmin是一款流行的开源工具,用于通过Web界面管理MySQL和MariaDB数据库。phpMyAdmin的 /phpmyadmin/index.php 页面存在未授权访问漏洞,攻击者可以通过该漏洞在未授权的情况下访问数据库管理界面,从而可能导致敏感数据泄露或被篡改。
phpMyAdmin /phpmyadmin/index.php 未授权访问漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2009-1151: PhpMyAdmin Scripts - Remote Code Execution
- POC CVE-2018-12613: PhpMyAdmin <4.8.2 - Local File Inclusion
- POC CVE-2019-6799: phpMyAdmin <4.8.5 - Local File Inclusion
- POC CVE-2020-11441: phpMyAdmin 5.0.2 - CRLF Injection
- POC CVE-2022-23808: phpMyAdmin < 5.1.2 - Cross-Site Scripting
- POC CVE-2018-12613: PhpMyAdmin 4.8.1 Remote File Inclusion
- POC phpmyadmin-default-login: phpMyAdmin - Default Login
- POC phpmyadmin-misconfiguration: Sensitive data exposure
- POC phpmyadmin-server-import: PhpMyAdmin Server Import
- POC phpmyadmin-setup-deserialization: Phpmyadmin Setup Deserialization
- POC phpmyadmin-setup: Publicly Accessible Phpmyadmin Setup
- POC phpmyadmin-default-login: phpMyAdmin - Default Login
- POC phpmyadmin-misconfiguration: phpmyadmin Data Exposure