Remote Code Execution Vulnerability in phpMyAdmin by phpMyAdmin
CVE-2018-12613

8.8HIGH

Key Information:

Vendor
PHPmyadmin
Status
PHPmyadmin
Vendor
CVE Published:
21 June 2018

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 94%

Summary

A vulnerability in phpMyAdmin prior to version 4.8.2 allows an authenticated attacker to include and potentially execute arbitrary files on the server. This issue arises from insufficient validation of whitelisted pages during redirect operations within phpMyAdmin. Notably, if '$cfg[AllowArbitraryServer]' is set to true, attackers can specify hosts under their control to execute arbitrary code. Furthermore, when '$cfg[ServerDefault]' is set to 0, it bypasses authentication, permitting the execution of vulnerable code without the need for login credentials.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2018-12613
Created by 0x00-0x00

CVE-2018-12613
Created by ivanitlearning

CVE-2018-12613-phpMyAdmin
Created by eastmountyxz

References

https://www.phpmyadmin.net/security/PMASA-2018-4/
x_refsource_CONFIRM
https://www.exploit-db.com/exploits/45020/
exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/104532
vdb-entryx_refsource_BID

EPSS Score

94% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.