Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:PHP:PHPMYADMIN:FILE-INC

Severity

 Minor

Recommended

 Yes

Recommended Action

 Drop

Category

 HTTP

Keywords

 phpMyAdmin tbl_replace.php Local File Inclusion

Release Date

 2019/02/15

Update Number

 3142

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: phpMyAdmin tbl_replace.php Local File Inclusion


This signature detects attempts to exploit a known vulnerability against phpMyAdmin. Successful exploitation could lead to information disclosure.

Extended Description

An attacker can exploit phpMyAdmin before 4.8.4 to leak the contents of a local file because of an error in the transformation feature. The attacker must have access to the phpMyAdmin Configuration Storage tables, although these can easily be created in any database to which the attacker has access. An attacker must have valid credentials to log in to phpMyAdmin; this vulnerability does not allow an attacker to circumvent the login system.

Affected Products

  • Debian debian_linux 8.0
  • Phpmyadmin phpmyadmin 4.0.0
  • Phpmyadmin phpmyadmin 4.0.1
  • Phpmyadmin phpmyadmin 4.0.10
  • Phpmyadmin phpmyadmin 4.0.10.1
  • Phpmyadmin phpmyadmin 4.0.10.10
  • Phpmyadmin phpmyadmin 4.0.10.11
  • Phpmyadmin phpmyadmin 4.0.10.12
  • Phpmyadmin phpmyadmin 4.0.10.13
  • Phpmyadmin phpmyadmin 4.0.10.14
  • Phpmyadmin phpmyadmin 4.0.10.15
  • Phpmyadmin phpmyadmin 4.0.10.16
  • Phpmyadmin phpmyadmin 4.0.10.17
  • Phpmyadmin phpmyadmin 4.0.10.18
  • Phpmyadmin phpmyadmin 4.0.10.19
  • Phpmyadmin phpmyadmin 4.0.10.2
  • Phpmyadmin phpmyadmin 4.0.10.20
  • Phpmyadmin phpmyadmin 4.0.10.3
  • Phpmyadmin phpmyadmin 4.0.10.4
  • Phpmyadmin phpmyadmin 4.0.10.5
  • Phpmyadmin phpmyadmin 4.0.10.6
  • Phpmyadmin phpmyadmin 4.0.10.7
  • Phpmyadmin phpmyadmin 4.0.10.8
  • Phpmyadmin phpmyadmin 4.0.10.9
  • Phpmyadmin phpmyadmin 4.0.2
  • Phpmyadmin phpmyadmin 4.0.3
  • Phpmyadmin phpmyadmin 4.0.4
  • Phpmyadmin phpmyadmin 4.0.4.1
  • Phpmyadmin phpmyadmin 4.0.4.2
  • Phpmyadmin phpmyadmin 4.0.5
  • Phpmyadmin phpmyadmin 4.0.6
  • Phpmyadmin phpmyadmin 4.0.7
  • Phpmyadmin phpmyadmin 4.0.8
  • Phpmyadmin phpmyadmin 4.0.9
  • Phpmyadmin phpmyadmin 4.1.0
  • Phpmyadmin phpmyadmin 4.1.1
  • Phpmyadmin phpmyadmin 4.1.10
  • Phpmyadmin phpmyadmin 4.1.11
  • Phpmyadmin phpmyadmin 4.1.12
  • Phpmyadmin phpmyadmin 4.1.13
  • Phpmyadmin phpmyadmin 4.1.14
  • Phpmyadmin phpmyadmin 4.1.14.1
  • Phpmyadmin phpmyadmin 4.1.14.2
  • Phpmyadmin phpmyadmin 4.1.14.3
  • Phpmyadmin phpmyadmin 4.1.14.4
  • Phpmyadmin phpmyadmin 4.1.14.5
  • Phpmyadmin phpmyadmin 4.1.14.6
  • Phpmyadmin phpmyadmin 4.1.14.7
  • Phpmyadmin phpmyadmin 4.1.14.8
  • Phpmyadmin phpmyadmin 4.1.2
  • Phpmyadmin phpmyadmin 4.1.3
  • Phpmyadmin phpmyadmin 4.1.4
  • Phpmyadmin phpmyadmin 4.1.5
  • Phpmyadmin phpmyadmin 4.1.6
  • Phpmyadmin phpmyadmin 4.1.7
  • Phpmyadmin phpmyadmin 4.1.8
  • Phpmyadmin phpmyadmin 4.1.9
  • Phpmyadmin phpmyadmin 4.2.0
  • Phpmyadmin phpmyadmin 4.2.1
  • Phpmyadmin phpmyadmin 4.2.10
  • Phpmyadmin phpmyadmin 4.2.10.1
  • Phpmyadmin phpmyadmin 4.2.11
  • Phpmyadmin phpmyadmin 4.2.12
  • Phpmyadmin phpmyadmin 4.2.13
  • Phpmyadmin phpmyadmin 4.2.13.1
  • Phpmyadmin phpmyadmin 4.2.13.2
  • Phpmyadmin phpmyadmin 4.2.13.3
  • Phpmyadmin phpmyadmin 4.2.2
  • Phpmyadmin phpmyadmin 4.2.3
  • Phpmyadmin phpmyadmin 4.2.4
  • Phpmyadmin phpmyadmin 4.2.5
  • Phpmyadmin phpmyadmin 4.2.6
  • Phpmyadmin phpmyadmin 4.2.7
  • Phpmyadmin phpmyadmin 4.2.7.1
  • Phpmyadmin phpmyadmin 4.2.8
  • Phpmyadmin phpmyadmin 4.2.8.1
  • Phpmyadmin phpmyadmin 4.2.9
  • Phpmyadmin phpmyadmin 4.2.9.1
  • Phpmyadmin phpmyadmin 4.3.0
  • Phpmyadmin phpmyadmin 4.3.1
  • Phpmyadmin phpmyadmin 4.3.10
  • Phpmyadmin phpmyadmin 4.3.11
  • Phpmyadmin phpmyadmin 4.3.11.1
  • Phpmyadmin phpmyadmin 4.3.12
  • Phpmyadmin phpmyadmin 4.3.13
  • Phpmyadmin phpmyadmin 4.3.13.1
  • Phpmyadmin phpmyadmin 4.3.13.2
  • Phpmyadmin phpmyadmin 4.3.13.3
  • Phpmyadmin phpmyadmin 4.3.2
  • Phpmyadmin phpmyadmin 4.3.3
  • Phpmyadmin phpmyadmin 4.3.4
  • Phpmyadmin phpmyadmin 4.3.5
  • Phpmyadmin phpmyadmin 4.3.6
  • Phpmyadmin phpmyadmin 4.3.7
  • Phpmyadmin phpmyadmin 4.3.8
  • Phpmyadmin phpmyadmin 4.3.9
  • Phpmyadmin phpmyadmin 4.4.0
  • Phpmyadmin phpmyadmin 4.4.1
  • Phpmyadmin phpmyadmin 4.4.10
  • Phpmyadmin phpmyadmin 4.4.11
  • Phpmyadmin phpmyadmin 4.4.1.1
  • Phpmyadmin phpmyadmin 4.4.12
  • Phpmyadmin phpmyadmin 4.4.13
  • Phpmyadmin phpmyadmin 4.4.13.1
  • Phpmyadmin phpmyadmin 4.4.14
  • Phpmyadmin phpmyadmin 4.4.14.1
  • Phpmyadmin phpmyadmin 4.4.15
  • Phpmyadmin phpmyadmin 4.4.15.1
  • Phpmyadmin phpmyadmin 4.4.15.10
  • Phpmyadmin phpmyadmin 4.4.15.2
  • Phpmyadmin phpmyadmin 4.4.15.3
  • Phpmyadmin phpmyadmin 4.4.15.4
  • Phpmyadmin phpmyadmin 4.4.15.5
  • Phpmyadmin phpmyadmin 4.4.15.6
  • Phpmyadmin phpmyadmin 4.4.15.7
  • Phpmyadmin phpmyadmin 4.4.15.8
  • Phpmyadmin phpmyadmin 4.4.15.9
  • Phpmyadmin phpmyadmin 4.4.2
  • Phpmyadmin phpmyadmin 4.4.3
  • Phpmyadmin phpmyadmin 4.4.4
  • Phpmyadmin phpmyadmin 4.4.5
  • Phpmyadmin phpmyadmin 4.4.6
  • Phpmyadmin phpmyadmin 4.4.6.1
  • Phpmyadmin phpmyadmin 4.4.7
  • Phpmyadmin phpmyadmin 4.4.8
  • Phpmyadmin phpmyadmin 4.4.9
  • Phpmyadmin phpmyadmin 4.5.0
  • Phpmyadmin phpmyadmin 4.5.0.1
  • Phpmyadmin phpmyadmin 4.5.0.2
  • Phpmyadmin phpmyadmin 4.5.1
  • Phpmyadmin phpmyadmin 4.5.2
  • Phpmyadmin phpmyadmin 4.5.3
  • Phpmyadmin phpmyadmin 4.5.3.1
  • Phpmyadmin phpmyadmin 4.5.4
  • Phpmyadmin phpmyadmin 4.5.4.1
  • Phpmyadmin phpmyadmin 4.5.5
  • Phpmyadmin phpmyadmin 4.5.5.1
  • Phpmyadmin phpmyadmin 4.6.0
  • Phpmyadmin phpmyadmin 4.6.1
  • Phpmyadmin phpmyadmin 4.6.2
  • Phpmyadmin phpmyadmin 4.6.3
  • Phpmyadmin phpmyadmin 4.6.4
  • Phpmyadmin phpmyadmin 4.6.5
  • Phpmyadmin phpmyadmin 4.6.5.1
  • Phpmyadmin phpmyadmin 4.6.5.2
  • Phpmyadmin phpmyadmin 4.6.6
  • Phpmyadmin phpmyadmin 4.7.0
  • Phpmyadmin phpmyadmin 4.7.1
  • Phpmyadmin phpmyadmin 4.7.2
  • Phpmyadmin phpmyadmin 4.7.3
  • Phpmyadmin phpmyadmin 4.7.4
  • Phpmyadmin phpmyadmin 4.7.5
  • Phpmyadmin phpmyadmin 4.7.6
  • Phpmyadmin phpmyadmin 4.7.7
  • Phpmyadmin phpmyadmin 4.7.8
  • Phpmyadmin phpmyadmin 4.7.9
  • Phpmyadmin phpmyadmin 4.8.0
  • Phpmyadmin phpmyadmin 4.8.0.1
  • Phpmyadmin phpmyadmin 4.8.1
  • Phpmyadmin phpmyadmin 4.8.2
  • Phpmyadmin phpmyadmin 4.8.3

References

  • CVE: CVE-2018-19968
  • URL: https://blog.scrt.ch/2018/12/14/phpmyadmin-multiple-vulnerabilities/
  • URL: https://www.phpmyadmin.net/security/pmasa-2018-6/

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out