21 matches found
CVE-2025-12922
creationtimestamp| type| source ---|---|--- 2025-11-10 02:16:01+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5akhtlglfx2 2025-11-10 03:41:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5apc5rc2l2u...
CVE-2024-12922
creationtimestamp| type| source ---|---|--- 2025-03-19 05:51:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8024 2025-03-19 06:40:16+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lkpl7nx7xn2u 2025-03-19 07:34:11+00:00| seen|...
CVE-2020-12922
...
CVE-2020-12922
This CVE-2020-12922 entry is rejected and not used and does not represent an active vulnerability entry.
QIWI: gifts.flocktory.com/phpmyadmin is vulnerable csrf
Summary: Hello Team, I found that the PHPMyAdmin login panel is publicly accessible on https://gifts.flocktory.com and it is using the 4.6.6 version of PHPMyAdmin, which is vulnerable to several CVEs...
phpMyAdmin <= 4.9.1 Cross-Site Request Forgery Vulnerability
A cross-site request forgery XSRF vulnerability exists in the Setup page of phpMyAdmin. A remote attacker can exploit this by tricking a user into visiting a specially crafted web page, allowing the attacker to delete any server in the setup page by creating a fake hyperlink containing the...
Fedora 31 : phpMyAdmin (2019-644b438f51)
Upstream announcement : Welcome to phpMyAdmin 4.9.1, a bugfix release. This is a regularly-schedule bugfix release that also includes some security hardening measures. We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for thi...
Fedora 29 : phpMyAdmin (2019-3b5a7abe17)
Upstream announcement : Welcome to phpMyAdmin 4.9.1, a bugfix release. This is a regularly-schedule bugfix release that also includes some security hardening measures. We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for thi...
Fedora 30 : phpMyAdmin (2019-6404181bf9)
Upstream announcement : Welcome to phpMyAdmin 4.9.1, a bugfix release. This is a regularly-schedule bugfix release that also includes some security hardening measures. We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for thi...
openSUSE Security Update : phpMyAdmin (openSUSE-2019-2211)
This update for phpMyAdmin to 4.9.1 fixes the following issues : Security issue fixed : - CVE-2019-12922: Fixed CSRF issue that allowed deletion of any server in the Setup page. boo1150914 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2019:2211-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for phpMyAdmin (moderate)
openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2019:2211-1 Rating: moderate References: 1150914 Cross-References: CVE-2019-12922 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 SUSE Package Hub...
Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions
A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of the most popular applications for managing the MySQL and MariaDB databases. phpMyAdmin is a free and open source administration tool for MySQL and MariaDB that's...
CVE-2019-12922
The CVE-2019-12922 entry concerns a CSRF flaw in phpMyAdmin 4.9.0.1 that allows an attacker to cause deletion of a server from the Setup page by tricking a victim into visiting a crafted page. The root cause is insufficient validation of the HTTP request origin, enabling unauthorized actions on b...
phpMyAdmin 4.9.0.1 - Cross-Site Request Forgery
phpMyAdmin 4.9.0.1 - Cross-Site Request Forgery ============================================= MGC ALERT 2019-003 - Original release date: June 13, 2019 - Last revised: September 13, 2019 - Discovered by: Manuel Garcia Cardenas - Severity: 4,3/10 CVSS Base Score - CVE-ID: CVE-2019-12922...
phpMyAdmin 4.9.0.1 Cross Site Request Forgery
============================================= MGC ALERT 2019-003 - Original release date: June 13, 2019 - Last revised: September 13, 2019 - Discovered by: Manuel Garcia Cardenas - Severity: 4,3/10 CVSS Base Score - CVE-ID: CVE-2019-12922 ============================================= I...
Emerson Liebert IntelliSlot Devices Default Credentials (HTTP)
Emerson Liebert IntelliSlot devices use known default credentials. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2018-12922
Emerson Liebert IntelliSlot Web Card devices allow remote attackers to reconfigure access control via the config/configUser.htm or config/configTelnet.htm URI...
CVE-2018-12922
The CVE-2018-12922 entry concerns Emerson Liebert IntelliSlot Web Card devices, where a remote attacker can reconfigure access control via the config/configUser.htm or config/configTelnet.htm URIs. Affected product is Emerson Liebert IntelliSlot Web Card devices; the root cause is a vulnerability...
CVE-2017-12922
wchar.c in libfpx 1.3.1p6 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted fpx image...