phpmyadmin/phpmyadmin Security Advisories for 5.0.0 (9)
-
[MEDIUM] Cross-site Scripting vulnerability in drag-and-drop upload of phpMyAdmin
PKSA-3y21-7x4r-6hyz CVE-2023-25727 GHSA-6hr3-44gx-g6wh
Affected version: >=5.0,<5.2.1|>=4.3.0,<4.9.11
Reported by:
GitHub -
[CRITICAL] phpmyadmin contains SQL Injection vulnerability
PKSA-d4h1-687r-vcyy CVE-2020-22452 GHSA-prcg-mc23-hgjh
Affected version: >=5.0.0,<5.0.2
Reported by:
GitHub -
[HIGH] Exposure of Sensitive Information to an Unauthorized Actor in PhpMyAdmin
PKSA-k8s6-rmtq-6tb7 CVE-2022-0813 GHSA-vx8q-j7h9-vf6q
Affected version: <5.1.3
Reported by:
GitHub -
SQL injection vulnerability in SearchController
PKSA-xbcx-cvf7-613m CVE-2020-26935
Affected version: >=4.9.0,<4.9.6|>=5.0.0,<5.0.3
Reported by:
FriendsOfPHP/security-advisories -
XSS relating to the transformation feature
PKSA-cfz7-294k-66b9 CVE-2020-26934
Affected version: >=4.9.0,<4.9.6|>=5.0.0,<5.0.3
Reported by:
FriendsOfPHP/security-advisories -
SQL injection with processing username
PKSA-sn13-qqq8-vd8p CVE-2020-10804
Affected version: >=4.9.0,<4.9.5|>=5.0.0,<5.0.2
Reported by:
FriendsOfPHP/security-advisories -
SQL injection relating to data display
PKSA-9124-v38k-n8zf CVE-2020-10803
Affected version: >=3.4,<4.9.5|>=5.0.0,<5.0.2
Reported by:
FriendsOfPHP/security-advisories -
SQL injection relating to searching
PKSA-s3cf-xyqh-q5wn CVE-2020-10802
Affected version: >=4.9.0,<4.9.5|>=5.0.0,<5.0.2
Reported by:
FriendsOfPHP/security-advisories -
SQL injection in user accounts page
PKSA-vmz7-cxq6-3g2f CVE-2020-5504
Affected version: >=4.0.0,<4.9.4|>=5.0.0,<5.0.1
Reported by:
FriendsOfPHP/security-advisories