508 matches found
[SECURITY] Fedora 43 Update: pgadmin4-9.10-1.fc43
pgAdmin is the most popular and feature rich Open Source administration and d evelopment platform for PostgreSQL, the most advanced Open Source database in the world...
Exploit for Code Injection in Pgadmin Pgadmin_4
CVE-2025-2945 – pgAdmin4 Authenticated RCE PoC This reposit...
Exploit for CVE-2025-12762
🔐 CVE-2025-12762 — Critical RCE Vulnerability in pgAdmin 4 !...
pgAdmin < 9.10 Multiple Vulnerabilities
The version of pgAdmin installed on the remote host is prior to 9.10. It is, therefore, affected by the following vulnerabilities: - pgAdmin versions prior to 9.10 are affected by a Remote Code Execution RCE vulnerability that occurs when running in server mode and performing restores from...
CVE-2025-12765
pgAdmin = 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification...
CVE-2025-12764
pgAdmin = 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amount of data DOS...
CVE-2025-12763
pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. This issue is caused by the use of shell=True during backup and restore operations, enabling attackers to execute arbitrary system commands by providing specially crafted file path input...
CVE-2025-12762
pgAdmin versions up to 9.9 are affected by a Remote Code Execution RCE vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. This issue allows attackers to inject and execute arbitrary commands on the server hosting pgAdmin, posing a critical...
SUSE CVE-2025-12762
pgAdmin versions up to 9.9 are affected by a Remote Code Execution RCE vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. This issue allows attackers to inject and execute arbitrary commands on the server hosting pgAdmin, posing a critical...
SUSE CVE-2025-12763
pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. This issue is caused by the use of shell=True during backup and restore operations, enabling attackers to execute arbitrary system commands by providing specially crafted file path input...
SUSE CVE-2025-12764
pgAdmin = 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amount of data DOS...
SUSE CVE-2025-12765
pgAdmin = 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification...
EUVD-2025-169294
pgAdmin is affected by an LDAP injection vulnerability...
EUVD-2025-169293
pgAdmin has vulnerability in LDAP authentication mechanism that allows bypassing TLS certificate verification...
GHSA-G4R8-3QMH-PMCH pgAdmin has vulnerability in LDAP authentication mechanism that allows bypassing TLS certificate verification
pgAdmin = 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification...
EUVD-2025-169296
pgAdmin4 vulnerable to Remote Code Execution RCE when running in server mode...
EUVD-2025-169295
pgAdmin 4 has command injection vulnerability on Windows systems...
GHSA-CVF4-F829-762V pgAdmin is affected by an LDAP injection vulnerability
pgAdmin = 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amount of data DOS...
GHSA-W2P4-P4RH-QCM3 pgAdmin4 vulnerable to Remote Code Execution (RCE) when running in server mode
pgAdmin versions up to 9.9 are affected by a Remote Code Execution RCE vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. This issue allows attackers to inject and execute arbitrary commands on the server hosting pgAdmin, posing a critical...
GHSA-RM79-X4G6-HVG5 pgAdmin 4 has command injection vulnerability on Windows systems
pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. This issue is caused by the use of shell=True during backup and restore operations, enabling attackers to execute arbitrary system commands by providing specially crafted file path input...