| Max CVSS | 7.5 | Min CVSS | 3.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-26935 | 7.5 |
An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject mali
|
31-01-2023 - 21:44 | 10-10-2020 - 19:15 | |
| CVE-2020-10803 | 3.5 |
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was discovered where malicious code could be used to trigger an XSS attack through retrieving and displaying results (in tbl_get_field.php and libraries/classes/Displa
|
16-11-2022 - 04:00 | 22-03-2020 - 05:15 | |
| CVE-2020-10802 | 6.0 |
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSe
|
16-11-2022 - 03:19 | 22-03-2020 - 05:15 | |
| CVE-2020-10804 | 6.0 |
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was found in retrieval of the current username (in libraries/classes/Server/Privileges.php and libraries/classes/UserPassword.php). A malicious user with access to the
|
16-11-2022 - 03:04 | 22-03-2020 - 04:15 | |
| CVE-2020-26934 | 4.3 |
phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link.
|
28-01-2021 - 17:55 | 10-10-2020 - 19:15 | |
| CVE-2019-12616 | 4.3 |
An issue was discovered in phpMyAdmin before 4.9.0. A vulnerability was found that allows an attacker to trigger a CSRF attack against a phpMyAdmin user. The attacker can trick the user, for instance through a broken <img> tag pointing at the victim'
|
14-06-2019 - 04:29 | 05-06-2019 - 05:29 |