Information on source package phpmyadmin

Available versions

ReleaseVersion
bullseye4:5.0.4+dfsg2-2+deb11u1
bookworm4:5.2.1+dfsg-1
trixie4:5.2.1+dfsg-4
sid4:5.2.1+dfsg-4

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2023-25727vulnerable (no DSA)fixedfixedfixedIn phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated use ...

Open unimportant issues

BugbullseyebookwormtrixiesidDescription
CVE-2022-23808vulnerablefixedfixedfixedAn issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker ca ...
CVE-2022-23807vulnerablefixedfixedfixedAn issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before ...
CVE-2022-0813vulnerablefixedfixedfixedPhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially ...
CVE-2020-11441vulnerablevulnerablevulnerablevulnerablephpMyAdmin 5.0.2 allows CRLF injection, as demonstrated by %0D%0Astrin ...
CVE-2007-4306vulnerablevulnerablevulnerablevulnerableMultiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.10 ...
CVE-2005-3622vulnerablevulnerablevulnerablevulnerablephpMyAdmin 2.7.0-beta1 and earlier allows remote attackers to obtain t ...

Resolved issues

BugDescription
TEMP-0000000-D91305tcpdf code execution via tcpdf tag
CVE-2021-21252The jQuery Validation Plugin provides drop-in validation for your exis ...
CVE-2020-26935An issue was discovered in SearchController in phpMyAdmin before 4.9.6 ...
CVE-2020-26934phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the tr ...
CVE-2020-22452SQL Injection vulnerability in function getTableCreationQuery in Creat ...
CVE-2020-10804In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection v ...
CVE-2020-10803In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection v ...
CVE-2020-10802In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection v ...
CVE-2020-5504In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists ...
CVE-2019-19617phpMyAdmin before 4.9.2 does not escape certain Git information, relat ...
CVE-2019-18622An issue was discovered in phpMyAdmin before 4.9.2. A crafted database ...
CVE-2019-12922A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in th ...
CVE-2019-12616An issue was discovered in phpMyAdmin before 4.9.0. A vulnerability wa ...
CVE-2019-11768An issue was discovered in phpMyAdmin before 4.9.0.1. A vulnerability ...
CVE-2019-6799An issue was discovered in phpMyAdmin before 4.8.5. When the AllowArbi ...
CVE-2019-6798An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability wa ...
CVE-2018-19970In phpMyAdmin before 4.8.4, an XSS vulnerability was found in the navi ...
CVE-2018-19969phpMyAdmin 4.7.x and 4.8.x versions prior to 4.8.4 are affected by a s ...
CVE-2018-19968An attacker can exploit phpMyAdmin before 4.8.4 to leak the contents o ...
CVE-2018-15605An issue was discovered in phpMyAdmin before 4.8.3. A Cross-Site Scrip ...
CVE-2018-12613An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an ...
CVE-2018-12581An issue was discovered in js/designer/move.js in phpMyAdmin before 4. ...
CVE-2018-10188phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to exec ...
CVE-2018-7260Cross-site scripting (XSS) vulnerability in db_central_columns.php in ...
CVE-2017-1000499phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a ...
CVE-2017-1000018phpMyAdmin 4.0, 4.4., and 4.6 are vulnerable to a DOS attack in the re ...
CVE-2017-1000017phpMyAdmin 4.0, 4.4 and 4.6 are vulnerable to a weakness where a user ...
CVE-2017-1000016A weakness was discovered where an attacker can inject arbitrary value ...
CVE-2017-1000015phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack ...
CVE-2017-1000014phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the t ...
CVE-2017-1000013phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakne ...
CVE-2017-18264An issue was discovered in libraries/common.inc.php in phpMyAdmin 4.0 ...
CVE-2016-9866An issue was discovered in phpMyAdmin. When the arg_separator is diffe ...
CVE-2016-9865An issue was discovered in phpMyAdmin. Due to a bug in serialized stri ...
CVE-2016-9864An issue was discovered in phpMyAdmin. With a crafted username or a ta ...
CVE-2016-9863An issue was discovered in phpMyAdmin. With a very large request to ta ...
CVE-2016-9862An issue was discovered in phpMyAdmin. With a crafted login request it ...
CVE-2016-9861An issue was discovered in phpMyAdmin. Due to the limitation in URL ma ...
CVE-2016-9860An issue was discovered in phpMyAdmin. An unauthenticated user can exe ...
CVE-2016-9859An issue was discovered in phpMyAdmin. With a crafted request paramete ...
CVE-2016-9858An issue was discovered in phpMyAdmin. With a crafted request paramete ...
CVE-2016-9857An issue was discovered in phpMyAdmin. XSS is possible because of a we ...
CVE-2016-9856An XSS issue was discovered in phpMyAdmin because of an improper fix f ...
CVE-2016-9855An issue was discovered in phpMyAdmin. By calling some scripts that ar ...
CVE-2016-9854An issue was discovered in phpMyAdmin. By calling some scripts that ar ...
CVE-2016-9853An issue was discovered in phpMyAdmin. By calling some scripts that ar ...
CVE-2016-9852An issue was discovered in phpMyAdmin. By calling some scripts that ar ...
CVE-2016-9851An issue was discovered in phpMyAdmin. With a crafted request paramete ...
CVE-2016-9850An issue was discovered in phpMyAdmin. Username matching for the allow ...
CVE-2016-9849An issue was discovered in phpMyAdmin. It is possible to bypass AllowR ...
CVE-2016-9848An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP ...
CVE-2016-9847An issue was discovered in phpMyAdmin. When the user does not specify ...
CVE-2016-6633An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigg ...
CVE-2016-6632An issue was discovered in phpMyAdmin where, under certain conditions, ...
CVE-2016-6631An issue was discovered in phpMyAdmin. A user can execute a remote cod ...
CVE-2016-6630An issue was discovered in phpMyAdmin. An authenticated user can trigg ...
CVE-2016-6629An issue was discovered in phpMyAdmin involving the $cfg['ArbitrarySer ...
CVE-2016-6628An issue was discovered in phpMyAdmin. An attacker may be able to trig ...
CVE-2016-6627An issue was discovered in phpMyAdmin. An attacker can determine the p ...
CVE-2016-6626An issue was discovered in phpMyAdmin. An attacker could redirect a us ...
CVE-2016-6625An issue was discovered in phpMyAdmin. An attacker can determine wheth ...
CVE-2016-6624An issue was discovered in phpMyAdmin involving improper enforcement o ...
CVE-2016-6623An issue was discovered in phpMyAdmin. An authorized user can cause a ...
CVE-2016-6622An issue was discovered in phpMyAdmin. An unauthenticated user is able ...
CVE-2016-6621The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15. ...
CVE-2016-6620An issue was discovered in phpMyAdmin. Some data is passed to the PHP ...
CVE-2016-6619An issue was discovered in phpMyAdmin. In the user interface preferenc ...
CVE-2016-6618An issue was discovered in phpMyAdmin. The transformation feature allo ...
CVE-2016-6617An issue was discovered in phpMyAdmin. A specially crafted database an ...
CVE-2016-6616An issue was discovered in phpMyAdmin. In the "User group" and "Design ...
CVE-2016-6615XSS issues were discovered in phpMyAdmin. This affects navigation pane ...
CVE-2016-6614An issue was discovered in phpMyAdmin involving the %u username replac ...
CVE-2016-6613An issue was discovered in phpMyAdmin. A user can specially craft a sy ...
CVE-2016-6612An issue was discovered in phpMyAdmin. A user can exploit the LOAD LOC ...
CVE-2016-6611An issue was discovered in phpMyAdmin. A specially crafted database an ...
CVE-2016-6610A full path disclosure vulnerability was discovered in phpMyAdmin wher ...
CVE-2016-6609An issue was discovered in phpMyAdmin. A specially crafted database na ...
CVE-2016-6608XSS issues were discovered in phpMyAdmin. This affects the database pr ...
CVE-2016-6607XSS issues were discovered in phpMyAdmin. This affects Zoom search (sp ...
CVE-2016-6606An issue was discovered in cookie encryption in phpMyAdmin. The decryp ...
CVE-2016-5739The Transformation implementation in phpMyAdmin 4.0.x before 4.0.10.16 ...
CVE-2016-5734phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x be ...
CVE-2016-5733Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2016-5732Multiple cross-site scripting (XSS) vulnerabilities in the partition-r ...
CVE-2016-5731Cross-site scripting (XSS) vulnerability in examples/openid.php in php ...
CVE-2016-5730phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x be ...
CVE-2016-5706js/get_scripts.js.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x befo ...
CVE-2016-5705Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.4. ...
CVE-2016-5704Cross-site scripting (XSS) vulnerability in the table-structure page i ...
CVE-2016-5703SQL injection vulnerability in libraries/central_columns.lib.php in ph ...
CVE-2016-5702phpMyAdmin 4.6.x before 4.6.3, when the environment lacks a PHP_SELF v ...
CVE-2016-5701setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4. ...
CVE-2016-5099Cross-site scripting (XSS) vulnerability in phpMyAdmin 4.4.x before 4. ...
CVE-2016-5098Directory traversal vulnerability in libraries/error_report.lib.php in ...
CVE-2016-5097phpMyAdmin before 4.6.2 places tokens in query strings and does not ar ...
CVE-2016-4412An issue was discovered in phpMyAdmin. A user can be tricked into foll ...
CVE-2016-2562The checkHTTP function in libraries/Config.class.php in phpMyAdmin 4.5 ...
CVE-2016-2561Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.4. ...
CVE-2016-2560Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2016-2559Cross-site scripting (XSS) vulnerability in the format function in lib ...
CVE-2016-2045Cross-site scripting (XSS) vulnerability in the SQL editor in phpMyAdm ...
CVE-2016-2044libraries/sql-parser/autoload.php in the SQL parser in phpMyAdmin 4.5. ...
CVE-2016-2043Cross-site scripting (XSS) vulnerability in the goToFinish1NF function ...
CVE-2016-2042phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote ...
CVE-2016-2041libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x b ...
CVE-2016-2040Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2016-2039libraries/session.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x ...
CVE-2016-2038phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x be ...
CVE-2016-1927The suggestPassword function in js/functions.js in phpMyAdmin 4.0.x be ...
CVE-2015-8980The plural form formula in ngettext family of calls in php-gettext bef ...
CVE-2015-8669libraries/config/messages.inc.php in phpMyAdmin 4.0.x before 4.0.10.12 ...
CVE-2015-7873The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 ...
CVE-2015-6830libraries/plugins/auth/AuthenticationCookie.class.php in phpMyAdmin 4. ...
CVE-2015-3903libraries/Config.class.php in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x ...
CVE-2015-3902Multiple cross-site request forgery (CSRF) vulnerabilities in the setu ...
CVE-2015-2206libraries/select_lang.lib.php in phpMyAdmin 4.0.x before 4.0.10.9, 4.2 ...
CVE-2014-9219Cross-site scripting (XSS) vulnerability in the redirection feature in ...
CVE-2014-9218libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.7, 4.1.x be ...
CVE-2014-8961Directory traversal vulnerability in libraries/error_report.lib.php in ...
CVE-2014-8960Cross-site scripting (XSS) vulnerability in libraries/error_report.lib ...
CVE-2014-8959Directory traversal vulnerability in libraries/gis/GIS_Factory.class.p ...
CVE-2014-8958Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2014-8326Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2014-7217Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2014-6300Cross-site scripting (XSS) vulnerability in the micro history implemen ...
CVE-2014-5274Cross-site scripting (XSS) vulnerability in the view operations page i ...
CVE-2014-5273Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0. ...
CVE-2014-4987server_user_groups.php in phpMyAdmin 4.1.x before 4.1.14.2 and 4.2.x b ...
CVE-2014-4986Multiple cross-site scripting (XSS) vulnerabilities in js/functions.js ...
CVE-2014-4955Cross-site scripting (XSS) vulnerability in the PMA_TRI_getRowForList ...
CVE-2014-4954Cross-site scripting (XSS) vulnerability in the PMA_getHtmlForActionLi ...
CVE-2014-4349Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.1. ...
CVE-2014-4348Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.2. ...
CVE-2014-1879Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin b ...
CVE-2013-5029phpMyAdmin 3.5.x and 4.0.x before 4.0.5 allows remote attackers to byp ...
CVE-2013-5003Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5. ...
CVE-2013-5002Cross-site scripting (XSS) vulnerability in libraries/schema/Export_Re ...
CVE-2013-5001Cross-site scripting (XSS) vulnerability in libraries/plugins/transfor ...
CVE-2013-5000phpMyAdmin 3.5.x before 3.5.8.2 allows remote attackers to obtain sens ...
CVE-2013-4999phpMyAdmin 4.0.x before 4.0.4.2 allows remote attackers to obtain sens ...
CVE-2013-4998phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4.2 allows remote ...
CVE-2013-4997Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5. ...
CVE-2013-4996Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5. ...
CVE-2013-4995Cross-site scripting (XSS) vulnerability in phpMyAdmin 3.5.x before 3. ...
CVE-2013-4729import.php in phpMyAdmin 4.x before 4.0.4.1 does not properly restrict ...
CVE-2013-3742Cross-site scripting (XSS) vulnerability in view_create.php (aka the C ...
CVE-2013-3241export.php (aka the export script) in phpMyAdmin 4.x before 4.0.0-rc3 ...
CVE-2013-3240Directory traversal vulnerability in the Export feature in phpMyAdmin ...
CVE-2013-3239phpMyAdmin 3.5.x before 3.5.8 and 4.x before 4.0.0-rc3, when a SaveDir ...
CVE-2013-3238phpMyAdmin 3.5.x before 3.5.8 and 4.x before 4.0.0-rc3 allows remote a ...
CVE-2013-1937Multiple cross-site scripting (XSS) vulnerabilities in tbl_gis_visuali ...
CVE-2012-5368phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained th ...
CVE-2012-5339Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5. ...
CVE-2012-5159phpMyAdmin 3.5.2.2, as distributed by the cdnetworks-kr-1 mirror durin ...
CVE-2012-4579Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5. ...
CVE-2012-4345Multiple cross-site scripting (XSS) vulnerabilities in the Database St ...
CVE-2012-4219show_config_errors.php in phpMyAdmin 3.5.x before 3.5.2.1 allows remot ...
CVE-2012-1902show_config_errors.php in phpMyAdmin 3.4.x before 3.4.10.2, when a con ...
CVE-2012-1190Cross-site scripting (XSS) vulnerability in the replication-setup func ...
CVE-2011-4782Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFil ...
CVE-2011-4780Multiple cross-site scripting (XSS) vulnerabilities in libraries/displ ...
CVE-2011-4634Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4. ...
CVE-2011-4107The simplexml_load_string function in the XML import plug-in (librarie ...
CVE-2011-4064Cross-site scripting (XSS) vulnerability in the setup interface in php ...
CVE-2011-3646phpmyadmin.css.php in phpMyAdmin 3.4.x before 3.4.6 allows remote atta ...
CVE-2011-3592Multiple cross-site scripting (XSS) vulnerabilities in the PMA_unInlin ...
CVE-2011-3591Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.4. ...
CVE-2011-3181Multiple cross-site scripting (XSS) vulnerabilities in the Tracking fe ...
CVE-2011-2719libraries/auth/swekey/swekey.auth.lib.php in phpMyAdmin 3.x before 3.3 ...
CVE-2011-2718Multiple directory traversal vulnerabilities in the relational schema ...
CVE-2011-2643Directory traversal vulnerability in sql.php in phpMyAdmin 3.4.x befor ...
CVE-2011-2642Multiple cross-site scripting (XSS) vulnerabilities in the table Print ...
CVE-2011-2508Directory traversal vulnerability in libraries/display_tbl.lib.php in ...
CVE-2011-2507libraries/server_synchronize.lib.php in the Synchronize implementation ...
CVE-2011-2506setup/lib/ConfigGenerator.class.php in phpMyAdmin 3.x before 3.3.10.2 ...
CVE-2011-2505libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication ...
CVE-2011-1941Open redirect vulnerability in the redirector feature in phpMyAdmin 3. ...
CVE-2011-1940Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.3. ...
CVE-2011-0987The PMA_Bookmark_get function in libraries/bookmark.lib.php in phpMyAd ...
CVE-2011-0986phpMyAdmin 2.11.x before 2.11.11.2, and 3.3.x before 3.3.9.1, does not ...
CVE-2010-4481phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass authen ...
CVE-2010-4480error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1 ...
CVE-2010-4329Cross-site scripting (XSS) vulnerability in the PMA_linkOrButton funct ...
CVE-2010-3263Cross-site scripting (XSS) vulnerability in setup/frames/index.inc.php ...
CVE-2010-3056Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.11 ...
CVE-2010-3055The configuration setup script (aka scripts/setup.php) in phpMyAdmin 2 ...
CVE-2010-2958Cross-site scripting (XSS) vulnerability in libraries/Error.class.php ...
CVE-2009-4605scripts/setup.php (aka the setup script) in phpMyAdmin 2.11.x before 2 ...
CVE-2009-3697SQL injection vulnerability in the PDF schema generator functionality ...
CVE-2009-3696Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.11.x before 2 ...
CVE-2009-2284Cross-site scripting (XSS) vulnerability in phpMyAdmin before 3.2.0.1 ...
CVE-2009-1285Static code injection vulnerability in the getConfigFile function in s ...
CVE-2009-1151Static code injection vulnerability in setup.php in phpMyAdmin 2.11.x ...
CVE-2009-1150Multiple cross-site scripting (XSS) vulnerabilities in the export page ...
CVE-2009-1149CRLF injection vulnerability in bs_disp_as_mime_type.php in the BLOB s ...
CVE-2009-1148Directory traversal vulnerability in bs_disp_as_mime_type.php in the B ...
CVE-2008-7252libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 uses pred ...
CVE-2008-7251libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a ...
CVE-2008-5621Cross-site request forgery (CSRF) vulnerability in phpMyAdmin 2.11.x b ...
CVE-2008-4775Cross-site scripting (XSS) vulnerability in pmd_pdf.php in phpMyAdmin ...
CVE-2008-4326The PMA_escapeJsString function in libraries/js_escape.lib.php in phpM ...
CVE-2008-4096libraries/database_interface.lib.php in phpMyAdmin before 2.11.9.1 all ...
CVE-2008-3457Cross-site scripting (XSS) vulnerability in setup.php in phpMyAdmin be ...
CVE-2008-3456phpMyAdmin before 2.11.8 does not sufficiently prevent its pages from ...
CVE-2008-3197Cross-site request forgery (CSRF) vulnerability in phpMyAdmin before 2 ...
CVE-2008-2960Cross-site scripting (XSS) vulnerability in phpMyAdmin before 2.11.7, ...
CVE-2008-1924Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running ...
CVE-2008-1567phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) passw ...
CVE-2008-1149phpMyAdmin before 2.11.5 accesses $_REQUEST to obtain some parameters ...
CVE-2007-6100Cross-site scripting (XSS) vulnerability in libraries/auth/cookie.auth ...
CVE-2007-5977Cross-site scripting (XSS) vulnerability in db_create.php in phpMyAdmi ...
CVE-2007-5976SQL injection vulnerability in db_create.php in phpMyAdmin before 2.11 ...
CVE-2007-5589Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2007-5386Cross-site scripting (XSS) vulnerability in scripts/setup.php in phpMy ...
CVE-2007-2245Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2007-2016Cross-site scripting (XSS) vulnerability in mysql/phpinfo.php in phpMy ...
CVE-2007-1395Incomplete blacklist vulnerability in index.php in phpMyAdmin 2.8.0 th ...
CVE-2007-1325The PMA_ArrayWalkRecursive function in libraries/common.lib.php in php ...
CVE-2007-0341Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.1 and earli ...
CVE-2007-0204Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2007-0203Multiple unspecified vulnerabilities in phpMyAdmin before 2.9.2-rc1 ha ...
CVE-2007-0095phpMyAdmin 2.9.1.1 allows remote attackers to obtain sensitive informa ...
CVE-2006-6944phpMyAdmin before 2.9.1.1 allows remote attackers to bypass Allow/Deny ...
CVE-2006-6943PhpMyAdmin before 2.9.1.1 allows remote attackers to obtain the full s ...
CVE-2006-6942Multiple cross-site scripting (XSS) vulnerabilities in PhpMyAdmin befo ...
CVE-2006-6374Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 allow ...
CVE-2006-6373PhpMyAdmin 2.7.0-pl2 allows remote attackers to obtain sensitive infor ...
CVE-2006-5718Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2. ...
CVE-2006-5117phpMyAdmin before 2.9.1-rc1 has a libraries directory under the web do ...
CVE-2006-5116Multiple cross-site request forgery (CSRF) vulnerabilities in phpMyAdm ...
CVE-2006-3388Cross-site scripting (XSS) vulnerability in phpMyAdmin before 2.8.2 al ...
CVE-2006-2418Cross-site scripting (XSS) vulnerabilities in certain versions of phpM ...
CVE-2006-2417Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.x before ...
CVE-2006-2031Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin 2. ...
CVE-2006-1804SQL injection vulnerability in sql.php in phpMyAdmin 2.7.0-pl1 allows ...
CVE-2006-1803Cross-site scripting (XSS) vulnerability in sql.php in phpMyAdmin 2.7. ...
CVE-2006-1678Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2006-1258Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.8.0.1 allows ...
CVE-2005-4349SQL injection vulnerability in server_privileges.php in phpMyAdmin 2.7 ...
CVE-2005-4079The register_globals emulation in phpMyAdmin 2.7.0 rc1 allows remote a ...
CVE-2005-3787Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2005-3665Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2005-3621CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows rem ...
CVE-2005-3301Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2005-3300The register_globals emulation layer in grab_globals.php for phpMyAdmi ...
CVE-2005-3299PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin ...
CVE-2005-2869Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin befo ...
CVE-2005-1392The SQL install script in phpMyAdmin 2.6.2 is created with world-reada ...
CVE-2005-0992Cross-site scripting (XSS) vulnerability in index.php in phpMyAdmin be ...
CVE-2005-0653phpMyAdmin 2.6.1 does not properly grant permissions on tables with an ...
CVE-2005-0567Multiple PHP remote file inclusion vulnerabilities in phpMyAdmin 2.6.1 ...
CVE-2005-0544phpMyAdmin 2.6.1 allows remote attackers to obtain the full path of th ...
CVE-2005-0543Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.6.1 allows re ...
CVE-2005-0459phpMyAdmin 2.6.2-dev, and possibly earlier versions, allows remote att ...
CVE-2004-2632phpMyAdmin 2.5.1 up to 2.5.7 allows remote attackers to modify configu ...
CVE-2004-2631Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5 ...
CVE-2004-2630The MIME transformation system (transformations/text_plain__external.i ...
CVE-2004-1148phpMyAdmin before 2.6.1, when configured with UploadDir functionality, ...
CVE-2004-1147phpMyAdmin 2.6.0-pl2, and other versions before 2.6.1, with external t ...
CVE-2004-1055Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6. ...
CVE-2004-0129Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 an ...

Security announcements

DSA / DLADescription
DLA-2413-1phpmyadmin - security update
DLA-2154-1phpmyadmin - security update
DLA-2060-1phpmyadmin - security update
DLA-2024-1phpmyadmin - security update
DLA-1821-1phpmyadmin - security update
DLA-1692-1phpmyadmin - security update
DLA-1658-1phpmyadmin - security update
DLA-1415-1phpmyadmin - security update
DLA-834-1phpmyadmin - security update
DLA-757-1phpmyadmin - security update
DLA-626-1phpmyadmin - security update
DSA-3627-1phpmyadmin - security update
DLA-551-1phpmyadmin - security update
DLA-481-2phpmyadmin - regression update
DLA-481-1phpmyadmin - security update
DLA-406-1phpmyadmin - security update
DSA-3382-1phpmyadmin - security update
DLA-336-1phpmyadmin - security update
DSA-2975-1phpmyadmin - security update
DLA-0014-1phpmyadmin - security update
DSA-2391-1phpmyadmin - several
DSA-2286-1phpymadmin - several
DSA-2167-1phpmyadmin - sql injection
DSA-2139-1phpmyadmin - several
DSA-2097-2phpmyadmin - several vulnerabilities
DSA-2097-1phpmyadmin - several vulnerabilities
DSA-2034-1phpmyadmin - several vulnerabilities
DSA-1918-1phpmyadmin - several vulnerabilities
DSA-1824-1phpmyadmin - several vulnerabilities
DSA-1723-1phpmyadmin - arbitrary code execution
DSA-1675-1phpmyadmin - cross site scripting
DSA-1641-1phpmyadmin - several issues
DSA-1557-1phpmyadmin - several vulnerabilities
DSA-1403-1phpmyadmin - cross-site scripting
DSA-1370-2phpmyadmin - several vulnerabilities
DSA-1370-1phpmyadmin - several vulnerabilities
DSA-1207-1phpmyadmin
DSA-880-1phpmyadmin - several
Search for package or bug name: Reporting problems