Attackers scan for /phpmyadmin , /pma , /phpMyAdmin , or /db on Shodan. Your Patch: Use .htaccess (Apache) or a location block (Nginx):
This was patched in version 5.1.2. It allowed an authenticated attacker to traverse directories via the $cfg['ThemeManager'] parameter. phpmyadmin hacktricks patched
Exploited the AllowArbitraryServer configuration to read server files using a rogue MySQL server. CVE-2024-2961 5.2.2 Attackers scan for /phpmyadmin , /pma , /phpMyAdmin