phpMyAdmin cve

CVE-2023-25727. In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a c...

phpMyAdmin cve

CVE-2023-25727. In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a crafted .sql file through the drag-and ... ,An issue was discovered in phpMyAdmin. A user can execute a remote code execution attack against a server when phpMyAdmin is being run as a CGI application.

相關軟體 phpMyAdmin 資訊

phpMyAdmin
phpMyAdmin 是一個用 PHP 編寫的免費軟件工具,旨在通過 Web 處理 MySQL 的管理。 phpMyAdmin 支持 MySQL,MariaDB 和 Drizzle 上的各種操作。經常使用的操作(管理數據庫,表,列,關係,索引,用戶,權限等等)可以通過用戶界面執行,而您仍然可以直接執行任何 SQL 語句。phpMyAdmin 功能:直觀的 Web 界面支持大多數 MySQL 功能:... phpMyAdmin 軟體介紹

phpMyAdmin cve 相關參考資料
CVE-2019-12922:phpMyAdmin 0 Day漏洞 - 虛擬主機- 捕夢網

2019年9月25日 — 該漏洞CVE編號為CVE-2019-12922,攻擊者利用該漏洞來刪除受害者伺服器上的phpMyAdmin面板上的設置頁面中配置的任意伺服器。但該攻擊並不允許攻擊者刪除 ...

https://blog.pumo.com.tw

National Vulnerability Database - NVD - Results

CVE-2023-25727. In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a crafted .sql file through the drag-and ...

https://nvd.nist.gov

phpMyAdmin - CVE - Search Results

An issue was discovered in phpMyAdmin. A user can execute a remote code execution attack against a server when phpMyAdmin is being run as a CGI application.

https://cve.mitre.org

phpMyAdmin 4.0.x—4.6.2 远程代码执行漏洞(CVE-2016 ...

phpMyAdmin 4.0.x—4.6.2 远程代码执行漏洞(CVE-2016-5734). phpMyAdmin是一套开源的、基于Web的MySQL数据库管理工具。在其查找并替换字符串功能中,将用户输入的信息拼接 ...

https://github.com

phpMyAdmin 4.x < 4.8.5 多個弱點(PMASA-2019-1) ...

2022年4月11日 — 未經驗證的遠端攻擊者可惡意利用此弱點,透過惡意MySQL 伺服器讀取任意檔案,並洩漏敏感資訊(CVE-2019-6799)。請注意,Nessus 並未嘗試惡意利用這些問題, ...

https://zh-tw.tenable.com

Phpmyadmin : Security vulnerabilities, CVEs

CVE-2018-12613 ... An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server.

https://www.cvedetails.com

Phpmyadmin : Security Vulnerabilities, CVEs, CVSS score ...

CVE-2016-9864 ... An issue was discovered in phpMyAdmin. With a crafted username or a table name, it was possible to inject SQL statements in the tracking ...

https://www.cvedetails.com

Phpmyadmin CVE

An issue was discovered in phpMyAdmin before 4.9.0.1. A vulnerability was reported where a specially crafted database name can be used to trigger an SQL ...

https://www.opencve.io

phpMyAdmin SQL Injection Vulnerability (CVE-2016-6611)

phpMyAdmin is prone to a sql-injection vulnerability. Exploiting these issues could allow an attacker to compromise the application, access or modify data, ...

https://www.trendmicro.com

phpmyadminphpmyadmin vulnerabilities

Known vulnerabilities in the phpmyadmin/phpmyadmin package. This does not include vulnerabilities belonging to this package's dependencies.

https://security.snyk.io