Vulnerability feed

Vulnerability

CVE-2009-1151

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2009-1151
Description:: Static code injection vulnerability in setup.php in phpMyAdmin 2.11.x before 2.11.9.5 and 3.x before 3.1.3.1 allows remote attackers to inject arbitrary PHP code into a configuration file via the save action.
Last updated date:: 03/14/2025

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 03/25/2022
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/03/2018
Reference url to background: https://github.com/adpast/pocs

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/03/2018
Reference url to background: https://github.com/pagvac/pocs

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/02/2020
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/phpmyadmin_config.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/16/2024
Reference url to background: http://www.gnucitizen.org/blog/cve-2009-1151-phpmyadmin-remote-code-execution-proof-of-concept/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 07/16/2024
Reference url to background: https://www.exploit-db.com/exploits/8921

Vulnerability Feed Contributors About Blog

@inTheWild

©2025 |