CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-11441

phpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astring%0D%0A inputs to login form fields causing CRLF sequences to be reflected on an error page. NOTE: the vendor states "I don't see anything specifically exploitable.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 84.0%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/phpmyadmin/phpmyadmin/issues/16056
https://github.com/phpmyadmin/phpmyadmin/issues/16056

Products affected by CVE-2020-11441

Phpmyadmin » Phpmyadmin » Version: 5.0.2

cpe:2.3:a:phpmyadmin:phpmyadmin:5.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-11441

Products

Pricing

Contact Us