CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpmyadmin: >> Phpmyadmin >> 5.1.4 Security Vulnerabilities

CVE-2023-25727

In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a crafted .sql file through the drag-and-drop interface.

CVSS Score

5.4

EPSS Score

0.072

Published

2023-02-13

CVE-2020-22452

SQL Injection vulnerability in function getTableCreationQuery in CreateAddField.php in phpMyAdmin 5.x before 5.2.0 via the tbl_storage_engine or tbl_collation parameters to tbl_create.php.

CVSS Score

9.8

EPSS Score

0.029

Published

2023-01-26

Page 1

Vulnerabilities

Vulnerable Software

Phpmyadmin: >> Phpmyadmin >> 5.1.4 Security Vulnerabilities

Products

Pricing

Contact Us