Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Database Management

phpMyAdmin

phpMyAdmin is a free software tool written in PHP intended to handle the administration of MySQL over the Web. phpMyAdmin supports a wide range of operations on MySQL and MariaDB. Frequently used operations (managing databases tables columns relations indexes users permissions etc) can be performed via the user interface while you still have the ability to directly execute any SQL statement.

Official Site:

https://www.phpmyadmin.net/

Severity Summary:

Critical: 19 High: 47 Medium: 167 Low: 30
Reference
Title
Severity
CVE-2020-5504
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2011-2506
phpMyAdmin Improper Control of Generation of Code (Code Injection) Vulnerability
High
CVE-2022-0813
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2012-5469
phpMyAdmin Permissions Privileges and Access Controls Vulnerability
High
CVE-2017-1000499
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2020-22278
phpMyAdmin Improper Neutralization of Formula Elements in a CSV File Vulnerability
High
CVE-2005-3621
phpMyAdmin Other Vulnerability
Medium
CVE-2016-6628
phpMyAdmin 7PK - Security Features Vulnerability
Medium
CVE-2009-1148
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2016-6630
phpMyAdmin Improper Input Validation Vulnerability
Medium
CVE-2005-0459
phpMyAdmin Other Vulnerability
Medium
CVE-2016-6626
phpMyAdmin 7PK - Security Features Vulnerability
Medium
CVE-2016-6627
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-6632
phpMyAdmin Resource Management Errors Vulnerability
Medium
CVE-2016-6625
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2004-1055
phpMyAdmin Other Vulnerability
Medium
CVE-2009-1150
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-6624
phpMyAdmin 7PK - Security Features Vulnerability
Medium
CVE-2016-6623
phpMyAdmin Improper Input Validation Vulnerability
Medium
CVE-2005-0544
phpMyAdmin Other Vulnerability
Medium
CVE-2007-4306
phpMyAdmin Other Vulnerability
Medium
CVE-2005-0653
phpMyAdmin Other Vulnerability
Medium
CVE-2016-9854
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-9859
phpMyAdmin Improper Input Validation Vulnerability
Medium
CVE-2016-9858
phpMyAdmin Improper Input Validation Vulnerability
Medium
CVE-2016-9857
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2005-3299
phpMyAdmin Other Vulnerability
Medium
CVE-2016-9856
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-9855
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-9853
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium