Lucene search
+L

37 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.18 views

EUVD-2016-3151

Malware in sbrugna...

5.4CVSS5.7AI score0.01531EPSS
Exploits0References7
Metasploit
Metasploit
added 2025/04/11 6:54 p.m.1066 views

pgAdmin Query Tool authenticated RCE (CVE-2025-2945)

This module exploits a vulnerability in pgAdmin where an authenticated user can establish a connection to the query tool and send a specific payload in the querycommited POST parameter. This payload is directly executed via a Python eval statement, resulting in remote code execution in versions...

9.9CVSS8.1AI score0.46222EPSS
Exploits8
ATTACKERKB
ATTACKERKB
added 2025/04/03 1:15 p.m.1 views

CVE-2025-2945

Remote Code Execution security vulnerability in pgAdmin 4 Query Tool and Cloud Deployment modules. The vulnerability is associated with the 2 POST endpoints; /sqleditor/querytool/download, where the querycommited parameter and /cloud/deploy endpoint, where the highavailability parameter is unsafe...

9.9CVSS7.8AI score0.46222EPSS
Exploits8References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:6 a.m.4 views

SUSE CVE-2016-2045

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

5.4CVSS6.3AI score0.01531EPSS
Exploits0References3
CNVD
CNVD
added 2022/03/16 12:0 a.m.297 views

sqlpad has an unspecified vulnerability

sqlpad is a web-based SQL editor. sqlpad suffers from a security vulnerability, for which no detailed vulnerability details are currently available...

9.1CVSS3.2AI score0.08669EPSS
Exploits12References1
Huntr
Huntr
added 2022/02/04 2:15 a.m.11 views

Cross-site Scripting (XSS) - Stored in bytebase/bytebase

Description Hello there, there is a stored XSS in bytebase SQL editor. Proof of Concept 1. Install bytebase on your system. 2. Go to /sql-editor and create a new query with name 3. Go back to the /sql-editor and go to Queries tab and see that a pop up appears, indicating the XSS payload is...

0.7AI score
Exploits0
Kitploit
Kitploit
added 2017/09/28 9:13 p.m.50 views

DBeaver - Free Universal DataBase Manager and SQL Client

Free multi-platform database tool for developers, SQL programmers, database administrators and analysts. Supports any database which has JDBC driver which basically means - ANY database. EE version also supports non-JDBC datasources WMI, MongoDB, Cassandra, Redis. Has a lot of features including...

7.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/02 12:0 a.m.28 views

phpMyAdmin 4.5.x < 4.5.4 Multiple Vulnerabilities (PMASA-2016-8, PMASA-2016-9)

Binary data 9117.prm...

5.4CVSS6AI score0.02033EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/02/26 12:0 a.m.1208 views

phpMyAdmin 4.5.x < 4.5.4 Multiple Vulnerabilities (PMASA-2016-8, PMASA-2016-9)

According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is 4.5.x prior to 4.5.4. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists in multiple scripts that allows a remote attacker, via ...

5.4CVSS6.5AI score0.02033EPSS
Exploits0References4
NVD
NVD
added 2016/02/20 1:59 a.m.21 views

CVE-2016-2045

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

5.4CVSS5.4AI score0.01531EPSS
Exploits0References5
OSV
OSV
added 2016/02/20 1:59 a.m.3 views

DEBIAN-CVE-2016-2045

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

5.4CVSS8.3AI score0.01531EPSS
Exploits0References1
OSV
OSV
added 2016/02/20 1:59 a.m.9 views

CVE-2016-2045

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

5.4CVSS6.5AI score
Exploits0References5
Prion
Prion
added 2016/02/20 1:59 a.m.20 views

Cross site scripting

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

3.5CVSS6AI score0.01531EPSS
Exploits0References5Affected Software2
UbuntuCve
UbuntuCve
added 2016/02/20 1:59 a.m.33 views

CVE-2016-2045

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

5.4CVSS6.5AI score0.01531EPSS
Exploits0References2
OSV
OSV
added 2016/02/20 1:59 a.m.4 views

UBUNTU-CVE-2016-2045

Cross-site scripting XSS vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response...

5.4CVSS6.6AI score0.01531EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2016/01/28 12:0 a.m.34 views

phpmyadmin -- XSS vulnerability in SQL editor

The phpMyAdmin development team reports: With a crafted SQL query, it is possible to trigger an XSS attack in the SQL editor. We consider this vulnerability to be non-critical. This vulnerability can be triggered only by someone who is logged in to phpMyAdmin, as the usual token protection preven...

5.4CVSS3.3AI score0.01531EPSS
Exploits0References1
phpMyAdmin
phpMyAdmin
added 2016/01/24 12:0 a.m.46 views

XSS vulnerability in SQL editor.

PMASA-2016-9 Announcement-ID: PMASA-2016-9 Date: 2016-01-24 Summary XSS vulnerability in SQL editor. Description With a crafted SQL query, it is possible to trigger an XSS attack in the SQL editor. Severity We consider this vulnerability to be non-critical. Mitigation factor This vulnerability ca...

5.4CVSS6.4AI score0.01531EPSS
Exploits0Affected Software1
Rows per page
Query Builder