8 matches found
CVE-2019-18622
creationtimestamp| type| source ---|---|--- 2024-02-26 15:42:13+00:00| seen| https://t.me/ctinow/193442...
MGASA-2019-0357 Updated phpmyadmin packages fix security vulnerability
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/ table name can be used to trigger a SQL injection attack through the designer feature CVE-2019-18622...
openSUSE: Security Advisory for phpMyAdmin (openSUSE-SU-2019:2599-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
phpMyAdmin 4.7.7 < 4.9.2 SQLi (PMASA-2019-5)
According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is at least 4.7.7 and prior to 4.9.2. It is, therefore, affected by a SQL injection SQLi vulnerability. A remote attacker can exploit this by using a crafted database or table name in the...
phpMyAdmin < 4.9.2 Multiple Vulnerabilities (PMASA-2019-5) - Windows
phpMyAdmin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if...
CVE-2019-18622
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature...
CVE-2019-18622
phpMyAdmin before 4.9.2 is affected by CVE-2019-18622: a crafted database/table name can trigger SQL injection through the Designer feature. Public data in connected sources shows the vulnerability and indicates a security fix in phpMyAdmin 4.9.2 (PMASA-2019-5) with multiple advisories (openSUSE,...
SQL injection in Designer feature
PMASA-2019-5 Announcement-ID: PMASA-2019-5 Date: 2019-10-28 Summary SQL injection in Designer feature Description A vulnerability was reported where a specially crafted database name can be used to trigger an SQL injection attack through the designer feature. This is similar to PMASA-2019-2 and...