Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmyadmin phpmyadmin vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-6374
Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 allow remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a phpMyAdmin cookie in (1) css/phpmyadmin.css.php, (2) db_create.php, (3) index.php, (4)...
Phpmyadmin Phpmyadmin 2.7.0 Pl2
7.5
CVSSv2
CVE-2006-1804
SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote malicious users to execute arbitrary SQL commands via the sql_query parameter.
Phpmyadmin Phpmyadmin 2.7.0 Pl1
Phpmyadmin Phpmyadmin 2.8.0.3
7.5
CVSSv2
CVE-2005-4450
Cross-site request forgery (CSRF) vulnerability in phpMyAdmin 2.7.0 allows remote malicious users to perform unauthorized actions as a logged-in user via a link or IMG tag to server_privileges.php, as demonstrated using the dbname and checkprivs parameters. NOTE: the provenance o...
Phpmyadmin Phpmyadmin 2.7.0 Pl1
7.5
CVSSv2
CVE-2005-0567
Multiple PHP remote file inclusion vulnerabilities in phpMyAdmin 2.6.1 allow remote malicious users to execute arbitrary PHP code by modifying the (1) theme parameter to phpmyadmin.css.php or (2) cfg[Server][extension] parameter to database_interface.lib.php to reference a URL on...
Phpmyadmin Phpmyadmin 2.6.1
7.5
CVSSv2
CVE-2004-2631
Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote malicious users to execute arbitrary PHP code via a crafted table name.
Phpmyadmin Phpmyadmin 2.5.3
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.5 Pl1
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.2 Pl1
Phpmyadmin Phpmyadmin 2.5.6 Rc2
Phpmyadmin Phpmyadmin 2.5.7
1 EDB exploit
7.5
CVSSv2
CVE-2004-2632
phpMyAdmin 2.5.1 up to 2.5.7 allows remote malicious users to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg['Servers'] variables.
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.2 Pl1
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.5.6 Rc2
Phpmyadmin Phpmyadmin 2.5.3
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.5 Pl1
7.5
CVSSv2
CVE-2004-2630
The MIME transformation system (transformations/text_plain__external.inc.php) in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote malicious users to execute arbitrary commands via shell metacharacters in unspecified vectors.
Phpmyadmin Phpmyadmin 2.5.2 Pl1
Phpmyadmin Phpmyadmin 2.5.3
Phpmyadmin Phpmyadmin 2.5.6 Rc2
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.6.0 Pl1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.5.5 Pl1
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.6 Rc1
7.5
CVSSv2
CVE-2001-1060
phpMyAdmin 2.2.0rc3 and previous versions allows remote malicious users to execute arbitrary commands by inserting them into (1) the strCopyTableOK argument in tbl_copy.php, or (2) the strRenameTableOK argument in tbl_rename.php.
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.2 Rc2
Phpmyadmin Phpmyadmin 2.0
Phpmyadmin Phpmyadmin 2.0.1
Phpmyadmin Phpmyadmin 2.1
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.0.3
Phpmyadmin Phpmyadmin 2.0.5
Phpmyadmin Phpmyadmin 2.2 Rc1
Phpmyadmin Phpmyadmin 2.2 Rc3
7.5
CVSSv2
CVE-2001-0478
Directory traversal vulnerability in phpMyAdmin 2.2.0 and previous versions versions allows remote malicious users to execute arbitrary code via a .. (dot dot) in an argument to the sql.php script.
Phpmyadmin Phpmyadmin
7.1
CVSSv2
CVE-2007-1325
The PMA_ArrayWalkRecursive function in libraries/common.lib.php in phpMyAdmin prior to 2.10.0.2 does not limit recursion on arrays provided by users, which allows context-dependent malicious users to cause a denial of service (web server crash) via an array with many dimensions. ...
Phpmyadmin Phpmyadmin
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »