Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

phpmyadmin phpmyadmin 4.5.3.1 vulnerabilities and exploits

(subscribe to this query)
5.4
CVSSv3
CVE-2016-2559
Cross-site scripting (XSS) vulnerability in the format function in libraries/sql-parser/src/Utils/Error.php in the SQL parser in phpMyAdmin 4.5.x prior to 4.5.5.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted query.
Phpmyadmin Phpmyadmin 4.5.0Phpmyadmin Phpmyadmin 4.5.3.1Phpmyadmin Phpmyadmin 4.5.0.1Phpmyadmin Phpmyadmin 4.5.5Phpmyadmin Phpmyadmin 4.5.3Phpmyadmin Phpmyadmin 4.5.2Phpmyadmin Phpmyadmin 4.5.4.1Phpmyadmin Phpmyadmin 4.5.4Phpmyadmin Phpmyadmin 4.5.1Phpmyadmin Phpmyadmin 4.5.0.2
6.8
CVSSv3
CVE-2016-2562
The checkHTTP function in libraries/Config.class.php in phpMyAdmin 4.5.x prior to 4.5.5.1 does not verify X.509 certificates from api.github.com SSL servers, which allows man-in-the-middle malicious users to spoof these servers and obtain sensitive information via a crafted certi...
Phpmyadmin Phpmyadmin 4.5.2Phpmyadmin Phpmyadmin 4.5.1Phpmyadmin Phpmyadmin 4.5.4.1Phpmyadmin Phpmyadmin 4.5.4Phpmyadmin Phpmyadmin 4.5.0Phpmyadmin Phpmyadmin 4.5.5Phpmyadmin Phpmyadmin 4.5.0.2Phpmyadmin Phpmyadmin 4.5.0.1Phpmyadmin Phpmyadmin 4.5.3.1Phpmyadmin Phpmyadmin 4.5.3
5.4
CVSSv3
CVE-2016-2561
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.4.x prior to 4.4.15.5 and 4.5.x prior to 4.5.5.1 allow remote authenticated users to inject arbitrary web script or HTML via (1) normalization.php or (2) js/normalization.js in the database normalization page, (3...
Phpmyadmin Phpmyadmin 4.4.7Phpmyadmin Phpmyadmin 4.4.6.1Phpmyadmin Phpmyadmin 4.4.15.2Phpmyadmin Phpmyadmin 4.4.9Phpmyadmin Phpmyadmin 4.4.8Phpmyadmin Phpmyadmin 4.4.2Phpmyadmin Phpmyadmin 4.4.15.3Phpmyadmin Phpmyadmin 4.4.12Phpmyadmin Phpmyadmin 4.4.11Phpmyadmin Phpmyadmin 4.5.3.1Phpmyadmin Phpmyadmin 4.5.3Phpmyadmin Phpmyadmin 4.5.0Phpmyadmin Phpmyadmin 4.4.6Phpmyadmin Phpmyadmin 4.4.5Phpmyadmin Phpmyadmin 4.4.15Phpmyadmin Phpmyadmin 4.4.14.1Phpmyadmin Phpmyadmin 4.4.1Phpmyadmin Phpmyadmin 4.4.0Phpmyadmin Phpmyadmin 4.5.0.2Phpmyadmin Phpmyadmin 4.5.0.1Phpmyadmin Phpmyadmin 4.4.15.1Phpmyadmin Phpmyadmin 4.4.10
6.1
CVSSv3
CVE-2016-2560
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x prior to 4.0.10.15, 4.4.x prior to 4.4.15.5, and 4.5.x prior to 4.5.5.1 allow remote malicious users to inject arbitrary web script or HTML via (1) a crafted Host HTTP header, related to libraries/Config.clas...
Phpmyadmin Phpmyadmin 4.5.3Phpmyadmin Phpmyadmin 4.5.2Phpmyadmin Phpmyadmin 4.5.0Phpmyadmin Phpmyadmin 4.4.14Phpmyadmin Phpmyadmin 4.4.4Phpmyadmin Phpmyadmin 4.4.3Phpmyadmin Phpmyadmin 4.4.13.1Phpmyadmin Phpmyadmin 4.4.13Phpmyadmin Phpmyadmin 4.0.10.14Phpmyadmin Phpmyadmin 4.0.10.13Phpmyadmin Phpmyadmin 4.0.9Phpmyadmin Phpmyadmin 4.0.4Phpmyadmin Phpmyadmin 4.0.3Phpmyadmin Phpmyadmin 4.0.10.4Phpmyadmin Phpmyadmin 4.0.10.3Phpmyadmin Phpmyadmin 4.0.1Phpmyadmin Phpmyadmin 4.0.0Phpmyadmin Phpmyadmin 4.5.5Phpmyadmin Phpmyadmin 4.5.4.1Phpmyadmin Phpmyadmin 4.5.0.1Phpmyadmin Phpmyadmin 4.4.7Phpmyadmin Phpmyadmin 4.4.6.1
5.3
CVSSv3
CVE-2015-8669
libraries/config/messages.inc.php in phpMyAdmin 4.0.x prior to 4.0.10.12, 4.4.x prior to 4.4.15.2, and 4.5.x prior to 4.5.3.1 allows remote malicious users to obtain sensitive information via a crafted request, which reveals the full path in an error message.
Phpmyadmin Phpmyadmin 4.5.3Phpmyadmin Phpmyadmin 4.5.2Phpmyadmin Phpmyadmin 4.4.14.1Phpmyadmin Phpmyadmin 4.4.13.1Phpmyadmin Phpmyadmin 4.4.7Phpmyadmin Phpmyadmin 4.4.6.1Phpmyadmin Phpmyadmin 4.4.0Phpmyadmin Phpmyadmin 4.0.10.11Phpmyadmin Phpmyadmin 4.0.10.2Phpmyadmin Phpmyadmin 4.0.10Phpmyadmin Phpmyadmin 4.0.6Phpmyadmin Phpmyadmin 4.0.5Phpmyadmin Phpmyadmin 4.0.4.2Phpmyadmin Phpmyadmin 4.5.1Phpmyadmin Phpmyadmin 4.5.0.2Phpmyadmin Phpmyadmin 4.4.13Phpmyadmin Phpmyadmin 4.4.12Phpmyadmin Phpmyadmin 4.4.6Phpmyadmin Phpmyadmin 4.4.5Phpmyadmin Phpmyadmin 4.4.4Phpmyadmin Phpmyadmin 4.0.10.10Phpmyadmin Phpmyadmin 4.0.10.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028memory leaklog injectionCVE-2024-3400CVE-2022-48695CVE-2022-48675CVE-2024-34487CVE-2024-33792spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook