CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpmyadmin: >> Phpmyadmin >> 3.5.8.1 Security Vulnerabilities

CVE-2013-5002

Cross-site scripting (XSS) vulnerability in libraries/schema/Export_Relation_Schema.class.php in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote authenticated users to inject arbitrary web script or HTML via a crafted pageNumber value to schema_export.php.

CVSS Score

3.5

EPSS Score

0.002

Published

2013-07-31

CVE-2013-5003

Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allow remote authenticated users to execute arbitrary SQL commands via (1) the scale parameter to pmd_pdf.php or (2) the pdf_page_number parameter to schema_export.php.

CVSS Score

6.5

EPSS Score

0.004

Published

2013-07-31

Page 3

Vulnerabilities

Vulnerable Software

Phpmyadmin: >> Phpmyadmin >> 3.5.8.1 Security Vulnerabilities

Products

Pricing

Contact Us