If the database user has the FILE privilege, you can read files from the underlying operating system hosting the database. SELECT LOAD_FILE('/etc/passwd'); Use code with caution.
If FILE privilege is missing, you may be able to enable the MySQL general log, set its location to the webroot, and write a shell to it. phpmyadmin hacktricks verified
HackTricks recommends several checks to find or exploit unmanaged phpMyAdmin installations: If the database user has the FILE privilege,
is a widely used, open-source tool written in PHP, designed for the administration of MySQL and MariaDB over the web. Because it acts as a bridge between a web browser and a database, it is a high-value target for attackers. set its location to the webroot
Requires FILE privilege and appropriate OS permissions (e.g., MySQL running as root, or weak directory permissions).