Full title: phpMyAdmin Authenticated Remote Code Execution Exploit 
Category: remote exploits
Platform: php
phpMyAdmin v4.8.0 and v4.8.1 are vulnerable to local file inclusion, which can be exploited post-authentication to execute PHP code by application. The module has been tested with phpMyAdmin v4.8.1.

# 0day.today @ http://0day.today/