Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmyadmin phpmyadmin 2.8.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5116
Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyAdmin prior to 2.9.1-rc1 allow remote malicious users to perform unauthorized actions as another user by (1) directly setting a token in the URL though dynamic variable evaluation and (2) unsetting arbitrary varia...
Phpmyadmin Phpmyadmin 2.8.1 Dev
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.8.0.2
Phpmyadmin Phpmyadmin 2.9.0 Dev
Phpmyadmin Phpmyadmin 2.8.0.1
Phpmyadmin Phpmyadmin 2.8.1
Phpmyadmin Phpmyadmin 2.8.0.3
Phpmyadmin Phpmyadmin 2.8.4
NA
CVE-2006-5117
phpMyAdmin prior to 2.9.1-rc1 has a libraries directory under the web document root with insufficient access control, which allows remote malicious users to obtain sensitive information via direct requests for certain files.
Phpmyadmin Phpmyadmin 2.8.1 Dev
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.8.0.2
Phpmyadmin Phpmyadmin 2.9.0 Dev
Phpmyadmin Phpmyadmin 2.8.0.1
Phpmyadmin Phpmyadmin 2.8.1
Phpmyadmin Phpmyadmin 2.8.0.3
Phpmyadmin Phpmyadmin 2.8.4
NA
CVE-2006-5718
Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4 up to and including 2.9.0.2 allows remote malicious users to inject arbitrary web script or HTML via UTF-7 or US-ASCII encoded characters, which are injected into an error message, as demonstrated by a requ...
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.7 Pl1
Phpmyadmin Phpmyadmin 2.6.4 Pl1
Phpmyadmin Phpmyadmin 2.9
Phpmyadmin Phpmyadmin 2.8.2
Phpmyadmin Phpmyadmin 2.9.2
Phpmyadmin Phpmyadmin 2.9 Rc1
Phpmyadmin Phpmyadmin 2.6.4 Pl3
Phpmyadmin Phpmyadmin 2.9.1
Phpmyadmin Phpmyadmin 2.6.4 Pl4
Phpmyadmin Phpmyadmin 2.8.1
Phpmyadmin Phpmyadmin 2.7.0 Beta1
Phpmyadmin Phpmyadmin 2.7
Phpmyadmin Phpmyadmin 2.8.4
NA
CVE-2007-1395
Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 up to and including 2.9.2 allows remote malicious users to conduct cross-site scripting (XSS) attacks by injecting arbitrary JavaScript or HTML in a (1) db or (2) table parameter value followed by an uppercase &l...
Phpmyadmin Phpmyadmin 2.8.1 Dev
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.9.1.1
Phpmyadmin Phpmyadmin 2.9.1 Rc2
Phpmyadmin Phpmyadmin 2.8.0
Phpmyadmin Phpmyadmin 2.9
Phpmyadmin Phpmyadmin 2.8.0.2
Phpmyadmin Phpmyadmin 2.8.2
Phpmyadmin Phpmyadmin 2.9.0 Dev
Phpmyadmin Phpmyadmin 2.9.0.1
Phpmyadmin Phpmyadmin 2.9.2
Phpmyadmin Phpmyadmin 2.9.0.2
Phpmyadmin Phpmyadmin 2.9.0 Rc1
Phpmyadmin Phpmyadmin 2.9.1
Phpmyadmin Phpmyadmin 2.9.0
Phpmyadmin Phpmyadmin 2.9.0.3
Phpmyadmin Phpmyadmin 2.8.0.1
Phpmyadmin Phpmyadmin 2.9.1 Rc1
Phpmyadmin Phpmyadmin 2.8.1
Phpmyadmin Phpmyadmin 2.8.0.3
Phpmyadmin Phpmyadmin 2.9.0 Beta1
Phpmyadmin Phpmyadmin 2.8.4
NA
CVE-2006-3388
Cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 2.8.2 allows remote malicious users to inject arbitrary web script or HTML via the table parameter.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.2
Phpmyadmin Phpmyadmin 2.7 Pl1
Phpmyadmin Phpmyadmin 2.6.4 Pl1
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.1 Pl3
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.6.2 Rc1
NA
CVE-2007-6100
Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth.lib.php in phpMyAdmin prior to 2.11.2.2, when logins are authenticated with the cookie auth_type, allows remote malicious users to inject arbitrary web script or HTML via the convcharset parameter to index.php...
Phpmyadmin Phpmyadmin 2.10.3rc1
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.7.0
Phpmyadmin Phpmyadmin 2.11.1.2
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.11.5.1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.9.1.1
Phpmyadmin Phpmyadmin 2.11.5.0
Phpmyadmin Phpmyadmin 2.10.0.1
Phpmyadmin Phpmyadmin
Phpmyadmin Phpmyadmin 2.8.0
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.8.0.2
Phpmyadmin Phpmyadmin 2.10.2
Phpmyadmin Phpmyadmin 2.8.2
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.11.9.0
Phpmyadmin Phpmyadmin 2.0.2
NA
CVE-2008-4326
The PMA_escapeJsString function in libraries/js_escape.lib.php in phpMyAdmin prior to 2.11.9.2, when Internet Explorer is used, allows remote malicious users to bypass cross-site scripting (XSS) protection mechanisms and conduct XSS attacks via a NUL byte inside a "</scri...
Phpmyadmin Phpmyadmin
Phpmyadmin Phpmyadmin 2.0
Phpmyadmin Phpmyadmin 2.0.0
Phpmyadmin Phpmyadmin 2.0.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.0.3
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.0.5
Phpmyadmin Phpmyadmin 2.1
Phpmyadmin Phpmyadmin 2.1.0
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2
Phpmyadmin Phpmyadmin 2.2.0
Phpmyadmin Phpmyadmin 2.2.0 Pre1
Phpmyadmin Phpmyadmin 2.2.0 Pre2
Phpmyadmin Phpmyadmin 2.2.0 Rc1
Phpmyadmin Phpmyadmin 2.2.0 Rc2
Phpmyadmin Phpmyadmin 2.2.0 Rc3
Phpmyadmin Phpmyadmin 2.2.2
Phpmyadmin Phpmyadmin 2.2.3
Phpmyadmin Phpmyadmin 2.2.4
NA
CVE-2008-3197
Cross-site request forgery (CSRF) vulnerability in phpMyAdmin prior to 2.11.7.1 allows remote malicious users to perform unauthorized actions via a link or IMG tag to (1) the db parameter in the "Creating a Database" functionality (db_create.php), and (2) the convcharse...
Phpmyadmin Phpmyadmin 2.5.2 Pl1
Phpmyadmin Phpmyadmin 2.10.3rc1
Phpmyadmin Phpmyadmin 2.11.4
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.11.0rc1
Phpmyadmin Phpmyadmin 2.7.0
Phpmyadmin Phpmyadmin 2.7.0 Pl1
Phpmyadmin Phpmyadmin 2.11.1.2
Phpmyadmin Phpmyadmin 2.8.1 Dev
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2.0 Rc2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.11.5.1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.11.3rc1
Phpmyadmin Phpmyadmin 2.9.1.1
Phpmyadmin Phpmyadmin 2.11.1
Phpmyadmin Phpmyadmin 2.9.1 Rc2
Phpmyadmin Phpmyadmin 2.2.0 Rc1
NA
CVE-2009-2284
Cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 3.2.0.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted SQL bookmark.
Phpmyadmin Phpmyadmin 2.5.2 Pl1
Phpmyadmin Phpmyadmin 2.10.3rc1
Phpmyadmin Phpmyadmin 3.0.1.1
Phpmyadmin Phpmyadmin 2.11.4
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.11.0rc1
Phpmyadmin Phpmyadmin 3.2.0-beta1
Phpmyadmin Phpmyadmin 2.7.0
Phpmyadmin Phpmyadmin 2.7.0 Pl1
Phpmyadmin Phpmyadmin 2.11.1.2
Phpmyadmin Phpmyadmin 2.8.1 Dev
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2.0 Rc2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 3.1.4
Phpmyadmin Phpmyadmin 3.1.3
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin
Phpmyadmin Phpmyadmin 2.11.5.1
Phpmyadmin Phpmyadmin 2.5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started