Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-5504

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own...

8.8CVSS7.4AI score0.38778EPSS
Exploits4References2
Github Security Blog
Github Security Blog
added 2022/05/24 5:5 p.m.45 views

phpMyAdmin SQL injection in user accounts page

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS7.9AI score0.38778EPSS
Exploits4References8Affected Software1
OSV
OSV
added 2022/05/24 5:5 p.m.37 views

GHSA-FGJ8-93XX-F6G6 phpMyAdmin SQL injection in user accounts page

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS8.7AI score0.38778EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2020/01/16 12:0 a.m.39 views

Debian DLA-2060-1 : phpmyadmin security update

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server. For Debian 8 'Jessie', thi...

8.8CVSS8.2AI score0.38778EPSS
Exploits4References3
Mageia
Mageia
added 2020/01/11 11:52 p.m.41 views

Updated phpmyadmin packages fix security vulnerability

Updated phpmyadmin package fix security vulnerability: A SQL injection flaw has been discovered in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS2.6AI score0.38778EPSS
Exploits4References3
OSV
OSV
added 2020/01/11 11:52 p.m.11 views

MGASA-2020-0033 Updated phpmyadmin packages fix security vulnerability

Updated phpmyadmin package fix security vulnerability: A SQL injection flaw has been discovered in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS9AI score0.38778EPSS
Exploits4References4
NVD
NVD
added 2020/01/09 10:15 p.m.18 views

CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS8.9AI score0.38778EPSS
Exploits4References5
OSV
OSV
added 2020/01/09 10:15 p.m.24 views

CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS7.4AI score0.38778EPSS
Exploits4References5
OSV
OSV
added 2020/01/09 10:15 p.m.2 views

DEBIAN-CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS7.4AI score0.38778EPSS
Exploits4References1
Prion
Prion
added 2020/01/09 10:15 p.m.21 views

Sql injection

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

6.5CVSS8.7AI score0.38778EPSS
Exploits4References4Affected Software3
Cvelist
Cvelist
added 2020/01/09 9:56 p.m.43 views

CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8AI score0.38778EPSS
Exploits4References5
Debian CVE
Debian CVE
added 2020/01/09 9:56 p.m.44 views

CVE-2020-5504

In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server...

8.8CVSS9.4AI score0.38778EPSS
Exploits4
OSV
OSV
added 2016/12/13 9:59 p.m.11 views

ALPINE-CVE-2016-6664

mysqldsafe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17, when...

7CVSS6.5AI score0.0308EPSS
Exploits10References1
Exploit DB
Exploit DB
added 2012/12/06 12:0 a.m.32 views

Oracle MySQL (Windows) - MOF Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Oracle MySQL for Microsoft Windows MO...

6CVSS7AI score0.31664EPSS
Exploits15
Rows per page
Query Builder