9 matches found
CVE-2020-5504
creationtimestamp| type| source ---|---|--- 2025-12-04 21:02:35+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3m76umt5zah2b...
USN-4639-1: phpMyAdmin vulnerabilities
It was discovered that there was a bug in the way phpMyAdmin handles the phpMyAdmin Configuration Storage tables. An authenticated attacker could use this vulnerability to cause phpmyAdmin to leak sensitive files. CVE-2018-19968 It was discovered that phpMyAdmin incorrectly handled user input. An...
[SECURITY] [DLA 2060-1] phpmyadmin security update
Package : phpmyadmin Version : 4:4.2.12-2+deb8u8 CVE ID : CVE-2020-5504 Debian Bug : 948718 In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. ...
openSUSE Security Update : phpMyAdmin (openSUSE-2020-56)
This update for phpMyAdmin to version 4.9.4 fixes the following issues : - CVE-2020-5504: SQL injection in user accounts page boo1160456. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2020-56. The text...
Security update for phpMyAdmin (important)
openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2020:0056-1 Rating: important References: 1150914 1157614 1160456 Cross-References: CVE-2019-12922 CVE-2019-18622 CVE-2020-5504 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fix...
phpMyAdmin < 4.9.4, 5.x < 5.0.1 SQL Injection Vulnerability (PMASA-2020-1) - Linux
phpMyAdmin is prone to an SQL injection vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:phpmyadmin:phpmyadmin"; if...
CVE-2020-5504
CVE-2020-5504 affects phpMyAdmin 4 prior to 4.9.4 and 5 prior to 5.0.1, where an SQL injection exists in the user accounts page. A malicious user could inject SQL in place of their username when creating queries on that page; an attacker must have a valid MySQL account to access the server. Conne...
phpMyAdmin CVE-2020-5504 SQL Injection Vulnerability
...
SQL injection in user accounts page
PMASA-2020-1 Announcement-ID: PMASA-2020-1 Date: 2020-01-05 Summary SQL injection in user accounts page Description A SQL injection flaw has been discovered in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An...