Lucene search

CVE-2013-3238

🗓️ 26 Apr 2013 03:23:34Reported by mitreType

cve🔗 web.nvd.nist.gov👁 79 Views🌐 WEB

phpMyAdmin remote code execution via /e\\x00 sequenc

Reporter	Title	Published	Views	Family All 47
Check Point Advisories	PhpMyAdmin preg_replace Function Code Injection - Ver2 (CVE-2013-3238)	18 May 201500:00	–	checkpoint_advisories
Check Point Advisories	PhpMyAdmin preg_replace Function Code Injection (CVE-2013-3238)	22 May 201300:00	–	checkpoint_advisories
UbuntuCve	CVE-2013-3238	26 Apr 201300:00	–	ubuntucve
Debian CVE	CVE-2013-3238	26 Apr 201303:34	–	debiancve
phpMyAdmin	Remote code execution via preg_replace().	24 Apr 201300:00	–	phpmyadmin
0day.today	phpMyAdmin Authenticated Remote Code Execution Vulnerability	30 Apr 201300:00	–	zdt
0day.today	phpMyAdmin 3.5.8 and 4.0.0-RC2 - Multiple Vulnerabilities	26 Apr 201300:00	–	zdt
Metasploit	phpMyAdmin Authenticated Remote Code Execution via preg_replace()	26 Apr 201314:42	–	metasploit
Exploit DB	phpMyAdmin - 'preg_replace' (Authenticated) Remote Code Execution (Metasploit)	1 May 201300:00	–	exploitdb
Exploit DB	phpMyAdmin 3.5.8/4.0.0-RC2 - Multiple Vulnerabilities	25 Apr 201300:00	–	exploitdb

Nvd

Node

phpmyadmin phpmyadminMatch3.5.0.0

phpmyadmin phpmyadminMatch3.5.1.0

phpmyadmin phpmyadminMatch3.5.2.0

phpmyadmin phpmyadminMatch3.5.2.1

phpmyadmin phpmyadminMatch3.5.2.2

phpmyadmin phpmyadminMatch3.5.3.0

phpmyadmin phpmyadminMatch3.5.4

phpmyadmin phpmyadminMatch3.5.5

phpmyadmin phpmyadminMatch3.5.6

phpmyadmin phpmyadminMatch3.5.7

phpmyadmin phpmyadminMatch3.5.7rc1

phpmyadmin phpmyadminMatch3.5.8rc1

phpmyadmin phpmyadminMatch4.0.0rc2

Source	Link
wiki	www.wiki.mageia.org/en/Support/Advisories/MGASA-2013-0133
lists	www.lists.fedoraproject.org/pipermail/package-announce/2013-May/104770.html
github	www.github.com/phpmyadmin/phpmyadmin/commit/ffa720d90a79c1f33cf4c5a33403d09a67b42a66
phpmyadmin	www.phpmyadmin.net/home_page/security/PMASA-2013-2.php
exploit-db	www.exploit-db.com/exploits/25136
lists	www.lists.fedoraproject.org/pipermail/package-announce/2013-May/104936.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2013-May/104725.html
mandriva	www.mandriva.com/security/advisories
lists	www.lists.opensuse.org/opensuse-updates/2013-06/msg00181.html
github	www.github.com/phpmyadmin/phpmyadmin/commit/dedd542cdaf1606ca9aa3f6f8f8adb078d8ad549

Parameter	Position	Path	Description	CWE
db	query param	/PMA/index.php	phpMyAdmin allows remote authenticated users to execute arbitrary code via a specially crafted sequence in the 'Replace table prefix' feature.	CWE-94, CWE-20
token	query param	/PMA/index.php	phpMyAdmin allows remote authenticated users to execute arbitrary code via a specially crafted sequence in the 'Replace table prefix' feature.	CWE-94, CWE-20
from_prefix	request body	/PMA/index.php	The 'from_prefix' parameter is manipulated to exploit a vulnerability in phpMyAdmin's handling of preg_replace, leading to arbitrary code execution.	CWE-94, CWE-20

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Apr 2013 03:34Current

6.3Medium risk

Vulners AI Score6.3

CVSS26

EPSS0.972