{"uuid": "d26959d8-d275-4cb1-9abc-c068f4eba237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31626", "type": "published-proof-of-concept", "source": "https://t.me/ptswarm/132", "content": "\ud83d\udca5 We have reproduced CVE-2022-31626, an RCE in PHP <= 7.4.29 which can be triggered via a rogue MySQL/MariaDB server! \n\nIt's a Heap Overflow, works with MySQLi/PDO, and doesn't require LOAD LOCAL INFILE. \n\nThe PoC \ud83d\udc49https://github.com/CFandR-github/PHP-binary-bugs/tree/main/cve_2022_31626_remote_exploit", "creation_timestamp": "2022-06-23T10:22:39.000000Z"}