Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2012-5159 - Vulnerability Database
phpMyAdmin

phpMyAdmin Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2012-5159

High
Reference: CVE-2012-5159
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-5159
Title: phpMyAdmin Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

phpMyAdmin 3.5.2.2 as distributed by the cdnetworks-kr-1 mirror during an unspecified time frame in 2012 contains an externally introduced modification (Trojan Horse) in server_sync.php which allows remote attackers to execute arbitrary PHP code via an eval injection attack.