Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmyadmin phpmyadmin vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2009-1285
Static code injection vulnerability in the getConfigFile function in setup/lib/ConfigFile.class.php in phpMyAdmin 3.x prior to 3.1.3.2 allows remote malicious users to inject arbitrary PHP code into configuration files.
Phpmyadmin Phpmyadmin 3.1.2
Phpmyadmin Phpmyadmin 3.1.0
Phpmyadmin Phpmyadmin 3.1.1
Phpmyadmin Phpmyadmin 3.1.3
Phpmyadmin Phpmyadmin 3.1.3.1
Phpmyadmin Phpmyadmin 3.1.0.0
Phpmyadmin Phpmyadmin 3.0.1
Phpmyadmin Phpmyadmin 3.0.0
668
VMScore
CVE-2009-1149
CRLF injection vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin prior to 3.1.3.1 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the (1) c_type and possibly (2) file_type parameter...
Phpmyadmin Phpmyadmin 3.1.0
Phpmyadmin Phpmyadmin 3.1.1
Phpmyadmin Phpmyadmin 3.1.2
Phpmyadmin Phpmyadmin 3.1.3
Phpmyadmin Phpmyadmin 3.1.0.0
Phpmyadmin Phpmyadmin
668
VMScore
CVE-2009-0919
XAMPP installs multiple packages with insecure default passwords, which makes it easier for remote malicious users to obtain access via (1) the "lampp" default password for the "nobody" account within the included ProFTPD installation, (2) a blank default pass...
Apachefriends Xampp 1.6.7
Apachefriends Xampp 1.6.6a
Apachefriends Xampp 1.6.0a
Apachefriends Xampp 1.6.0
Apachefriends Xampp 1.4.16
Apachefriends Xampp 1.6.8
Apachefriends Xampp 1.6.2
Apachefriends Xampp 1.6.1
Apachefriends Xampp 1.5.2
Apachefriends Xampp 1.5.1
Apachefriends Xampp 1.5.0
Apachefriends Xampp 1.4.10
Apachefriends Xampp 1.4.9
Apachefriends Xampp 1.4.2
Apachefriends Xampp 1.4
Apachefriends Xampp 1.6.6
Apachefriends Xampp 0.9
Apachefriends Xampp 0.8.2
Apachefriends Xampp 1.6.3a
Apachefriends Xampp 1.6.3
Apachefriends Xampp 1.5.4
Apachefriends Xampp 1.5.3
668
VMScore
CVE-2007-2278
Multiple PHP remote file inclusion vulnerabilities in DCP-Portal 6.1.1 allow remote malicious users to execute arbitrary PHP code via a URL in (1) the path parameter to library/adodb/adodb.inc.php, (2) the abs_path_editor parameter to library/editor/editor.php, or (3) the cfgfile...
Dcp-portal Dcp-portal 6.1.1
668
VMScore
CVE-2006-6944
phpMyAdmin prior to 2.9.1.1 allows remote malicious users to bypass Allow/Deny access rules that use IP addresses via false headers.
Phpmyadmin Phpmyadmin 2.9.0 Rc1
Phpmyadmin Phpmyadmin 2.9.1 Rc1
Phpmyadmin Phpmyadmin 2.9.0.1
Phpmyadmin Phpmyadmin 2.9.0.2
Phpmyadmin Phpmyadmin 2.9.0.3
Phpmyadmin Phpmyadmin 2.9.0 Beta1
Phpmyadmin Phpmyadmin 2.9.0
Phpmyadmin Phpmyadmin 2.9.1 Rc2
Phpmyadmin Phpmyadmin
668
VMScore
CVE-2006-6374
Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 allow remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a phpMyAdmin cookie in (1) css/phpmyadmin.css.php, (2) db_create.php, (3) index.php, (4)...
Phpmyadmin Phpmyadmin 2.7.0 Pl2
668
VMScore
CVE-2006-1804
SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows remote malicious users to execute arbitrary SQL commands via the sql_query parameter.
Phpmyadmin Phpmyadmin 2.7.0 Pl1
Phpmyadmin Phpmyadmin 2.8.0.3
668
VMScore
CVE-2005-4450
Cross-site request forgery (CSRF) vulnerability in phpMyAdmin 2.7.0 allows remote malicious users to perform unauthorized actions as a logged-in user via a link or IMG tag to server_privileges.php, as demonstrated using the dbname and checkprivs parameters. NOTE: the provenance o...
Phpmyadmin Phpmyadmin 2.7.0 Pl1
668
VMScore
CVE-2005-0567
Multiple PHP remote file inclusion vulnerabilities in phpMyAdmin 2.6.1 allow remote malicious users to execute arbitrary PHP code by modifying the (1) theme parameter to phpmyadmin.css.php or (2) cfg[Server][extension] parameter to database_interface.lib.php to reference a URL on...
Phpmyadmin Phpmyadmin 2.6.1
668
VMScore
CVE-2004-2632
phpMyAdmin 2.5.1 up to 2.5.7 allows remote malicious users to modify configuration settings and gain unauthorized access to MySQL servers via modified $cfg['Servers'] variables.
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.2 Pl1
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.5.6 Rc2
Phpmyadmin Phpmyadmin 2.5.3
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.5 Pl1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »