Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phppgadmin project phppgadmin vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-1600
Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin prior to 5.0.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) name or (2) type of a function.
Phppgadmin Project Phppgadmin 5.0.2
Phppgadmin Project Phppgadmin 5.0.1
Phppgadmin Project Phppgadmin 5.0
Phppgadmin Project Phppgadmin
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
4.3
CVSSv2
CVE-2008-5587
Directory traversal vulnerability in libraries/lib.inc.php in phpPgAdmin 4.2.1 and previous versions, when register_globals is enabled, allows remote malicious users to read arbitrary files via a .. (dot dot) in the _language parameter to index.php.
Phppgadmin Phppgadmin 3.5.2
Phppgadmin Phppgadmin 3.5
Phppgadmin Phppgadmin 3.4.1
Phppgadmin Phppgadmin 3.1
Phppgadmin Phppgadmin
Phppgadmin Phppgadmin 2.2.1
Phppgadmin Phppgadmin 2.2
Phppgadmin Phppgadmin 4.1.1
Phppgadmin Phppgadmin 3.5.3
1 EDB exploit
4.3
CVSSv2
CVE-2007-5728
Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, and possibly 4.1.2, allows remote malicious users to inject arbitrary web script or HTML via certain input available in PHP_SELF in (1) redirect.php, possibly related to (2) login.php, different vectors than CVE...
Phppgadmin Phppgadmin 3.5
Phppgadmin Phppgadmin 3.5.2
Phppgadmin Phppgadmin 3.5.3
Phppgadmin Phppgadmin 4.1.1
1 EDB exploit
NA
CVE-2023-40619
phpPgAdmin 7.14.4 and previous versions is vulnerable to deserialization of untrusted data which may lead to remote code execution because user-controlled data is directly passed to the PHP 'unserialize()' function in multiple places. An example is the functionality to ...
Phppgadmin Project Phppgadmin
9.3
CVSSv2
CVE-2019-10784
phppgadmin up to and including 7.12.1 allows sensitive actions to be performed without validating that the request originated from the application. One such area, "database.php" does not verify the source of an HTTP request. This can be leveraged by a remote malicious u...
Phppgadmin Project Phppgadmin
9.3
CVSSv2
CVE-2007-2865
Cross-site scripting (XSS) vulnerability in sqledit.php in phpPgAdmin 4.1.1 allows remote malicious users to inject arbitrary web script or HTML via the server parameter.
Phppgadmin Phppgadmin 4.1.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon