Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / phpmyadmin

phpmyadmin

272 tracked vulnerabilities.

phpMyAdmin 4.x < 4.0.3 - Authenticated Cross-Site Scripting via Create View Error Message

phpMyAdmin <4.0.0-rc3 - Code Injection

phpMyAdmin <4.0.0-rc3 - Path Traversal

phpMyAdmin <3.5.8 and <4.0.0-rc3 - Authenticated RCE

phpMyAdmin <3.5.8 and <4.0.0-rc3 - Authenticated RCE

CVE-2013-1937 MEDIUM

phpMyAdmin < 3.5.8 - Cross-Site Scripting via visualizationSettings Parameters

Portable phpMyAdmin <1.3.1 - Auth Bypass

phpMyAdmin 3.5.x < 3.5.3 - Cross-Site Scripting via Unencrypted JavaScript Fetch

phpMyAdmin 3.5.x < 3.5.3 - Authenticated Cross-Site Scripting via Event, Procedure, or Trigger Name

phpMyAdmin 3.5.2.2 - Remote Code Execution via Trojaned server_sync.php

phpMyAdmin 3.5.x < 3.5.2.2 - Authenticated Cross-Site Scripting via Crafted Table Names

phpMyAdmin 3.4.x < 3.4.11.1 and 3.5.x < 3.5.2.2 - Authenticated Cross-Site Scripting via Crafted Table Name

phpMyAdmin 3.5.x < 3.5.2.1 - Unauthenticated Sensitive Information Exposure via Direct Request to show_config_errors.php

phpMyAdmin 3.4.x < 3.4.10.1 - Stored Cross-Site Scripting via Database Name in Replication Setup

phpMyAdmin 3.4.x < 3.4.10.2 - Sensitive Information Exposure via show_config_errors.php

phpMyAdmin 3.4.0-3.4.5 - Authenticated Cross-Site Scripting via Database Table or Column Name

phpMyAdmin 3.4.0-3.4.4 - Authenticated Cross-Site Scripting via Inline-Editing Confirmation Message

phpMyAdmin 3.4.0 - Open Redirect via Redirector Feature

phpMyAdmin 3.3.0-3.3.10 - Cross-Site Scripting via Crafted Table Name

phpMyAdmin 3.4.0-3.4.8 - Cross-Site Scripting via Setup Host Parameter

phpMyAdmin 3.4.x < 3.4.9 - Cross-Site Scripting via Export Panel URL Parameters

phpMyAdmin 3.4.0-3.4.7 - Stored Cross-Site Scripting via Database Name or SQL Query

CVE-2011-4107 MEDIUM

phpMyAdmin <3.4.7.1 & <3.3.10.5 - XXE Injection

phpMyAdmin <3.4.6 - Info Disclosure

phpMyAdmin 3.4.x < 3.4.6 - Cross-Site Scripting via Setup Interface

Previous Page 7 of 11 Next

Products

phpmyadmin 271 phpMyAdmin 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy