Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Database Management

phpMyAdmin

phpMyAdmin is a free software tool written in PHP intended to handle the administration of MySQL over the Web. phpMyAdmin supports a wide range of operations on MySQL and MariaDB. Frequently used operations (managing databases tables columns relations indexes users permissions etc) can be performed via the user interface while you still have the ability to directly execute any SQL statement.

Official Site:

https://www.phpmyadmin.net/

Severity Summary:

Critical: 19 High: 47 Medium: 167 Low: 30
Reference
Title
Severity
CVE-2016-2562
phpMyAdmin Improper Input Validation Vulnerability
Medium
CVE-2010-4480
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-5732
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2010-3056
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2005-1392
phpMyAdmin Other Vulnerability
Medium
CVE-2016-6612
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2005-3301
phpMyAdmin Other Vulnerability
Medium
CVE-2016-6610
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-6608
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-6607
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-5704
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-7873
phpMyAdmin 7PK - Security Features Vulnerability
Medium
CVE-2016-4412
phpMyAdmin 7PK - Security Features Vulnerability
Medium
CVE-2013-5003
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2013-4996
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-3902
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2015-2206
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2015-6830
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2014-8958
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8669
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-2559
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2005-4349
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2004-1148
phpMyAdmin Other Vulnerability
Medium
CVE-2016-2040
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-6799
phpMyAdmin Vulnerability
Medium
CVE-2018-19968
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2018-19970
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-1000015
phpMyAdmin Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-1000013
phpMyAdmin URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2014-8959
phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium