CVE-2009-1151 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2009-1151

phpMyAdmin | phpMyAdminAdded 2022-03-25Remediation Deadline 2022-04-15

phpMyAdmin Remote Code Execution Vulnerability

Setup script used to generate configuration can be fooled using a crafted POST request to include arbitrary PHP code in generated configuration file.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-94

References

https://nvd.nist.gov/vuln/detail/CVE-2009-1151