⚠ Exploited in the wild

Exploitation observed in the wild. Not yet on CISA KEV.

CVE-2016-5734 — Code Injection in Phpmyadmin

CWE-94 — Code Injection12 documents8 sources

Severity

9.8CRITICALNVD

EPSS

87.0%

top 0.56%

CISA KEV

Not in KEV

Exploit

Exploited in wild

Active exploitation observed

Affected products

Phpmyadmin Debian Phpmyadmin

Timeline

PublishedJul 3

Latest updateMay 17

Description

phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not properly choose delimiters to prevent use of the preg_replace e (aka eval) modifier, which might allow remote attackers to execute arbitrary PHP code via a crafted string, as demonstrated by the table search-and-replace implementation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶debiandebian/phpmyadmin< phpmyadmin 4:4.6.3-1 (bookworm)

▶Packagistphpmyadmin/phpmyadmin4.0.10.0 — 4.0.10.16+2

▶Debianphpmyadmin/phpmyadmin< 4:4.6.3-1+3

▶NVDphpmyadmin/phpmyadmin56 versions+55

Patches

Patch: github.com ↗Patch: github.com ↗Patch: www.phpmyadmin.net ↗

🔴Vulnerability Details

GHSA

phpMyAdmin Code Injection vulnerability↗2022-05-17

▶

OSV

phpMyAdmin Code Injection vulnerability↗2022-05-17

▶

OSV

CVE-2016-5734: phpMyAdmin 4↗2016-07-03

▶

VulnCheck

phpMyAdmin phpMyAdmin Improper Control of Generation of Code ('Code Injection')↗2016

▶

💥Exploits & PoCs

Exploit-DB

phpMyAdmin 4.6.2 - (Authenticated) Remote Code Execution↗2016-07-29

▶

Metasploit

phpMyAdmin Authenticated Remote Code Execution↗

▶

📋Vendor Advisories

Debian

CVE-2016-5734: phpmyadmin - phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3...↗2016

▶

💬Community

Bugzilla

CVE-2016-5701 CVE-2016-5702 CVE-2016-5703 CVE-2016-5704 CVE-2016-5705 CVE-2016-5706 CVE-2016-5730 CVE-2016-5731 CVE-2016-5732 CVE-2016-5733 CVE-2016-5734 CVE-2016-5739 phpMyAdmin: 4.6.3, 4.4.15.7 and ↗2016-06-23

▶

Bugzilla

▶

Bugzilla

▶

Bugzilla

▶