CVE-2020-37116

HighPublic PoC

Published: 03 February 2026

Published

03 February 2026

Modified

10 February 2026

KEV Added

—

Patch

—

CVSS Score 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0010 27.3th percentile

Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Description

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database…

compromise.

Mitigating Controls (NIST 800-53 r5)AI

AC-3 Access Enforcement good match

prevent

Directly enforces access control policies to prevent low-privileged users from remotely accessing the vulnerable phpMyAdmin interface bundled in OpenEclass.

SI-2 Flaw Remediation good match

prevent

Mandates timely flaw remediation, including patching the remote login vulnerability in the default phpMyAdmin 2.10.0.2 as advised in OpenEclass documentation.

SA-22 Unsupported System Components good match

prevent

Prohibits use of unsupported system components like the outdated phpMyAdmin 2.10.0.2, preventing bundling of vulnerable software that enables remote access and exploitation.

Security SummaryAI

CVE-2020-37116 is a vulnerability in GUnet OpenEclass 1.7.3, an e-learning platform that includes phpMyAdmin 2.10.0.2 by default. This bundled phpMyAdmin version permits remote logins, exposing the database management interface to unauthorized access. The issue stems from improper access control (CWE-284), with a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

Attackers require low privileges (PR:L) on the OpenEclass platform to exploit this remotely over the network. They can access phpMyAdmin directly, upload a shell, and inspect the config.php file to extract the MySQL password, resulting in full database compromise with high impacts on confidentiality, integrity, and availability.

Advisories and documentation, including the VulnCheck advisory on GUnet OpenEclass phpMyAdmin remote access and the OpenEclass CHANGES.txt file, provide details on patches and mitigations. A public proof-of-concept exploit is available on Exploit-DB (exploit 48163).

Real-world exploitation is feasible given the public exploit, highlighting risks for unpatched OpenEclass 1.7.3 deployments.

Details

CWE(s): CWE-284 NVD-CWE-noinfo

Affected Products

gunet

open eclass platform

1.7.3

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

attack.mitre.org →

T1505.003 Web Shell Persistence

Adversaries may backdoor web servers with web shells to establish persistent access to systems.

attack.mitre.org →

T1552.001 Credentials In Files Credential Access

Adversaries may search local file systems and remote file shares for files containing insecurely stored credentials.

attack.mitre.org →

T1213.006 Databases Collection

Adversaries may leverage databases to mine valuable information.

attack.mitre.org →

Why these techniques?

Vulnerability exposes phpMyAdmin to low-privileged OpenEclass users, enabling exploitation for privilege escalation (T1068), web shell upload (T1505.003), extraction of MySQL credentials from config.php (T1552.001), and full database access/manipulation (T1213.006).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

References

https://download.openeclass.org/files/docs/1.7/CHANGES.txt
Release Notes · disclosure@vulncheck.com
https://www.exploit-db.com/exploits/48163
Exploit, Third Party Advisory, VDB Entry · disclosure@vulncheck.com
https://www.openeclass.org/
Product · disclosure@vulncheck.com
https://www.vulncheck.com/advisories/gunet-openeclass-e-learning-platform-phpmyadmin-remote-access
Third Party Advisory · disclosure@vulncheck.com