phpMyAdmin Remote Code Execution Vulnerability

NVD

Known Exploited Vulnerability

CVE-2009-1151, phpMyAdmin Remote Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Setup script used to generate configuration can be fooled using a crafted POST request to include arbitrary PHP code in generated configuration file.

The following remediation steps are recommended / required by April 15, 2022: Apply updates per vendor instructions.