Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2020-22452 |
|
SQL Injection in sqli (CVE-2020-22452)
SQL injection in sqli (CVE-2020-22452). Successful exploitation can lead to full system takeover.
|
| CVE-2009-1151 KEV |
|
[KEV] Code Injection in phpmyadmin (CVE-2009-1151)
code injection in phpmyadmin (CVE-2009-1151). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-1000013 |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
|
| CVE-2017-1000014 |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
|
| CVE-2017-1000015 |
|
Cross-Site Scripting (XSS) in phpmyadmin (CVE-2017-1000015)
cross-site scripting in phpmyadmin (CVE-2017-1000015). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000016 |
|
Vulnerability in phpmyadmin (CVE-2017-1000016)
vulnerability in phpmyadmin (CVE-2017-1000016). Data can be tampered with by attackers.
|
| CVE-2017-1000017 |
|
SSRF (Server-Side Request Forgery) in phpmyadmin (CVE-2017-1000017)
SSRF in phpmyadmin (CVE-2017-1000017). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000018 |
|
Vulnerability in dos (CVE-2017-1000018)
vulnerability in dos (CVE-2017-1000018). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6621 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2016-6621)
SSRF in ssrf (CVE-2016-6621). Confidential information can be exposed externally.
|