{"uuid": "8a3ce6b1-e098-44e9-80fa-9f3e446a7031", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31626", "type": "published-proof-of-concept", "source": "https://t.me/zero_day_uz/182", "content": "\ud83d\udca5 We have reproduced CVE-2022-31626, an RCE in PHP <= 7.4.29 which can be triggered via a rogue MySQL/MariaDB server! \n\nIt's a Heap Overflow, works with MySQLi/PDO, and doesn't require LOAD LOCAL INFILE. \n\nThe PoC \ud83d\udc49https://github.com/CFandR-github/PHP-binary-bugs/tree/main/cve_2022_31626_remote_exploit", "creation_timestamp": "2022-06-25T14:45:43.000000Z"}