Security Advisories - phpmyadmin/phpmyadmin - Packagist

phpmyadmin/phpmyadmin Security Advisories for 5.0.2 (4)

[MEDIUM] Cross-site Scripting vulnerability in drag-and-drop upload of phpMyAdmin

PKSA-3y21-7x4r-6hyz CVE-2023-25727 GHSA-6hr3-44gx-g6wh

Affected version: >=5.0,<5.2.1|>=4.3.0,<4.9.11

Reported by:
GitHub
[HIGH] Exposure of Sensitive Information to an Unauthorized Actor in PhpMyAdmin

PKSA-k8s6-rmtq-6tb7 CVE-2022-0813 GHSA-vx8q-j7h9-vf6q

Affected version: <5.1.3

Reported by:
GitHub
[CRITICAL] SQL injection vulnerability in SearchController

PKSA-xbcx-cvf7-613m CVE-2020-26935 GHSA-7ff4-cv53-4cjq

Affected version: >=4.9.0,<4.9.6|>=5.0.0,<5.0.3

Reported by:
GitHub, FriendsOfPHP/security-advisories
[MEDIUM] XSS relating to the transformation feature

PKSA-cfz7-294k-66b9 CVE-2020-26934 GHSA-6349-53vr-7hcr

Affected version: >=4.9.0,<4.9.6|>=5.0.0,<5.0.3

Reported by:
GitHub, FriendsOfPHP/security-advisories