Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:28875
HistoryDec 18, 2012 - 12:00 a.m.

'portable-phpMyAdmin (WordPress Plugin)' Authentication Bypass (CVE-2012-5469)

2012-12-1800:00:00
vulners.com
37
JSON

I. DESCRIPTION

portable-phpMyAdmin doesn't verify an existing WordPress session
(privileged or not) when accessing the plugin file path directly.
Because of how this plugin works, a default installation will provide
a full phpMyAdmin console with the privilege level of the MySQL
configuration of WordPress.

II. TESTED VERSION

1.3.0

III. PoC EXPLOIT

Navigate to http://host/wp-content/plugins/portable-phpmyadmin/wp-pma-mod
and you will be presented with the full portable-phpMyAdmin web
interface without the requirement of a session or any credential.

IV. SOLUTION

Upgrade to version 1.3.1

V. REFERENCES

http://wordpress.org/extend/plugins/portable-phpmyadmin/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5469

VI. TIMELINE

10/13/2012 - Initial developer disclosure
10/14/2012 - Response from developer with commitment to fix the vulnerability
10/31/2012 - Follow-up with developer after no communication or patched release
11/16/2012 - Second attempt to follow-up with developer regarding
progress/timetable
11/26/2012 - Contacted WordPress 'plugins team' about lack of progress
on patched release
11/27/2012 - WordPress 'plugins team' patches software and releases
version 1.3.1
12/12/2012 - Public disclosure

Related

exploitpack 1
checkpoint_advisories 1
prion 1
patchstack 1
packetstorm 1
seebug 1
nessus 1
myhack58 1
openvas 1
wpvulndb 1
cve 1
exploitdb 1
securityvulns 1
exploitpack
exploitpack
WordPress Plugin Portable phpMyAdmin - Authentication Bypass
2012-12-13 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress portable-phpMyAdmin Plugin Authentication Bypass (CVE-2012-5469)
2019-04-08 00:00:00
prion
prion
Authentication flaw
2012-12-20 12:02:00
patchstack
patchstack
WordPress Portable phpMyAdmin Plugin - Authentication Bypass
2012-12-13 00:00:00
packetstorm
packetstorm
WordPress portable-phpMyAdmin 1.3.0 Authentication Bypass
2012-12-12 00:00:00
seebug
seebug
Portable phpMyAdmin Wordpress Plugin Authentication Bypass
2014-07-01 00:00:00
nessus
nessus
Portable phpMyAdmin Plugin for WordPress 'wp-pma-mod' Authentication Bypass
2013-01-25 00:00:00
myhack58
myhack58
portable-phpMyAdmin(WordPress plugin authentication bypass-vulnerability warning-the black bar safety net
2012-12-21 00:00:00
openvas
openvas
WordPress Portable phpMyAdmin Plugin 'wp-pma-mod' Security Bypass Vulnerability
2012-12-17 00:00:00
wpvulndb
wpvulndb
portable-phpMyAdmin < 1.3.1 - Authentication Bypass
2014-08-01 00:00:00
cve
cve
CVE-2012-5469
2012-12-20 12:02:00
exploitdb
exploitdb
WordPress Plugin Portable phpMyAdmin - Authentication Bypass
2012-12-13 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2012-12-18 00:00:00
JSON
Related for SECURITYVULNS:DOC:28875
exploitpack1checkpoint_advisories1prion1patchstack1packetstorm1seebug1nessus1myhack581openvas1wpvulndb1cve1exploitdb1securityvulns1