PHPMyAdmin allows users to execute PHP code through the "phpmyadmin" database.
If the web root is writable, an attacker can write a PHP shell and access it via browser. phpmyadmin hacktricks verified
SELECT LOAD_FILE('/etc/passwd');