| Max CVSS | 7.5 | Min CVSS | 5.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-12922 | 5.8 |
A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page.
|
02-02-2023 - 19:52 | 13-09-2019 - 13:15 | |
| CVE-2020-5504 | 6.5 |
In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account t
|
10-11-2020 - 19:40 | 09-01-2020 - 22:15 | |
| CVE-2019-18622 | 7.5 |
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.
|
14-01-2020 - 22:15 | 22-11-2019 - 21:15 |