Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpmyadmin phpmyadmin 2.6.0 pl2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-0543
Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.6.1 allows remote malicious users to inject arbitrary HTML and web script via (1) the strServer, cfg[BgcolorOne], or strServerChoice parameters in select_server.lib.php, (2) the bg_color or row_no parameters in display_tbl_...
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.6.0 Pl2
Phpmyadmin Phpmyadmin 2.6.1 Rc1
4 EDB exploits
5
CVSSv2
CVE-2004-1148
phpMyAdmin prior to 2.6.1, when configured with UploadDir functionality, allows remote malicious users to read arbitrary files via the sql_localfile parameter.
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl1
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.6.0 Pl2
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.5 Pl1
10
CVSSv2
CVE-2004-1147
phpMyAdmin 2.6.0-pl2, and other versions prior to 2.6.1, with external transformations enabled, allows remote malicious users to execute arbitrary commands via shell metacharacters.
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl1
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.6.0 Pl2
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.5 Pl1
1 EDB exploit
6.8
CVSSv2
CVE-2004-1055
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) a...
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl1
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.5.1
Phpmyadmin Phpmyadmin 2.6.0 Pl2
Phpmyadmin Phpmyadmin 2.5.4
Phpmyadmin Phpmyadmin 2.5.5 Rc2
Phpmyadmin Phpmyadmin 2.5.5 Pl1
Gentoo Linux 1.4
5
CVSSv2
CVE-2005-0459
phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote malicious users to determine the full path of the web root via a direct request to select_lang.lib.php, which reveals the path in a PHP error message.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.0.3
Phpmyadmin Phpmyadmin 2.2.6
Phpmyadmin Phpmyadmin 2.6.2 Dev
Phpmyadmin Phpmyadmin 2.6.0 Pl1
Phpmyadmin Phpmyadmin 2.5.2
Phpmyadmin Phpmyadmin 2.1
Phpmyadmin Phpmyadmin 2.0.1
4.3
CVSSv2
CVE-2006-1678
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.8.0.3 allow remote malicious users to inject arbitrary web script or HTML via unknown vectors in unspecified scripts in the themes directory.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.7.0
Phpmyadmin Phpmyadmin 2.7.0 Pl1
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2.0 Rc2
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.2.0 Rc1
Phpmyadmin Phpmyadmin 2.6.4 Pl1
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.1 Pl3
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.7.0 Pl2
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
4.3
CVSSv2
CVE-2005-0992
Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin prior to 2.6.2-rc1 allows remote malicious users to inject arbitrary web script or HTML via the convcharset parameter.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.2
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.1 Pl3
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.0.3
Phpmyadmin Phpmyadmin 2.6.1 Pl1
Phpmyadmin Phpmyadmin 2.2.6
Phpmyadmin Phpmyadmin 2.6.0 Pl1
1 EDB exploit
4.3
CVSSv2
CVE-2005-2869
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.6.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the Username to libraries/auth/cookie.auth.lib.php or (2) the error parameter to error.php.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.2
Phpmyadmin Phpmyadmin 2.6.2 Pl1
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.1 Pl3
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.0.3
Phpmyadmin Phpmyadmin 2.6.1 Pl1
Phpmyadmin Phpmyadmin 2.2.6
1 EDB exploit
4.3
CVSSv2
CVE-2005-3665
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin prior to 2.7.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) HTTP_HOST variable and (2) various scripts in the libraries directory that handle header generation.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.2
Phpmyadmin Phpmyadmin 2.6.4 Pl1
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.1 Pl3
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.6.2 Rc1
Phpmyadmin Phpmyadmin 2.5.6 Rc1
Phpmyadmin Phpmyadmin 2.0.3
5.8
CVSSv2
CVE-2006-3388
Cross-site scripting (XSS) vulnerability in phpMyAdmin prior to 2.8.2 allows remote malicious users to inject arbitrary web script or HTML via the table parameter.
Phpmyadmin Phpmyadmin 2.1.1
Phpmyadmin Phpmyadmin 2.6.4 Rc1
Phpmyadmin Phpmyadmin 2.2.4
Phpmyadmin Phpmyadmin 2.1.2
Phpmyadmin Phpmyadmin 2.2 Pre1
Phpmyadmin Phpmyadmin 2.8.3
Phpmyadmin Phpmyadmin 2.5.0
Phpmyadmin Phpmyadmin 2.2
Phpmyadmin Phpmyadmin 2.7 Pl1
Phpmyadmin Phpmyadmin 2.6.4 Pl1
Phpmyadmin Phpmyadmin 2.0.4
Phpmyadmin Phpmyadmin 2.6.1
Phpmyadmin Phpmyadmin 2.6.1 Pl3
Phpmyadmin Phpmyadmin 2.3.1
Phpmyadmin Phpmyadmin 2.0.2
Phpmyadmin Phpmyadmin 2.5.5 Rc1
Phpmyadmin Phpmyadmin 2.6.0 Pl3
Phpmyadmin Phpmyadmin 2.5.7 Pl1
Phpmyadmin Phpmyadmin 2.4.0
Phpmyadmin Phpmyadmin 2.5.5
Phpmyadmin Phpmyadmin 2.5.7
Phpmyadmin Phpmyadmin 2.6.2 Rc1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »