CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-23808

An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker can inject malicious code into aspects of the setup script, which can allow XSS or HTML injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.418

EPSS Ranking 97.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://infosecwriteups.com/exploit-cve-2022-23808-85041c6e5b97
https://security.gentoo.org/glsa/202311-17
https://www.phpmyadmin.net/security/PMASA-2022-2/
https://infosecwriteups.com/exploit-cve-2022-23808-85041c6e5b97
https://security.gentoo.org/glsa/202311-17
https://www.phpmyadmin.net/security/PMASA-2022-2/

Products affected by CVE-2022-23808

Phpmyadmin » Phpmyadmin » Version: 5.1.0

cpe:2.3:a:phpmyadmin:phpmyadmin:5.1.0
Phpmyadmin » Phpmyadmin » Version: 5.1.1

cpe:2.3:a:phpmyadmin:phpmyadmin:5.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23808

Products

Pricing

Contact Us