Unrated severityNVD Advisory· Published Feb 3, 2026· Updated Feb 4, 2026

GUnet OpenEclass 1.7.3 E-learning platform - phpMyAdmin Remote Access

CVE-2020-37116

Description

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise.

Affected products

PhpMyAdmin/phpMyAdmininferred
Range: = 2.10.0.2
Gunet/Openeclassllm-fuzzy
Range: =1.7.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

download.openeclass.org/files/docs/1.7/CHANGES.txtmitrepatch
www.exploit-db.com/exploits/48163mitreexploit
www.vulncheck.com/advisories/gunet-openeclass-e-learning-platform-phpmyadmin-remote-accessmitrethird-party-advisory
www.openeclass.orgmitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000