Remote Code Execution Vulnerability in phpMyAdmin 3.5.2.2

CVE-2012-5159 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

phpMyAdmin 3.5.2.2, as distributed by the cdnetworks-kr-1 mirror during an unspecified time frame in 2012, contains an externally introduced modification (Trojan Horse) in server_sync.php, which allows remote attackers to execute arbitrary PHP code via an eval injection attack.

Learn more about our Cis Benchmark Audit For Server Software.