Lucene search
K

14 matches found

OSV
OSV
added 2024/03/06 11:3 a.m.31 views

BIT-PHPMYADMIN-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS8AI score0.02115EPSS
Exploits0References9
OSV
OSV
added 2022/05/24 5:12 p.m.27 views

GHSA-F4CR-3XMC-2WPM phpMyAdmin SQL injection vulnerability

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS8AI score0.02115EPSS
Exploits0References11
Github Security Blog
Github Security Blog
added 2022/05/24 5:12 p.m.26 views

phpMyAdmin SQL injection vulnerability

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS8AI score0.02115EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2020/03/22 5:15 a.m.27 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS8AI score
Exploits0References8
NVD
NVD
added 2020/03/22 5:15 a.m.25 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS8AI score0.02115EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2020/03/22 5:15 a.m.41 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS7.1AI score0.02115EPSS
Exploits0References5
OSV
OSV
added 2020/03/22 5:15 a.m.2 views

UBUNTU-CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS5.8AI score0.02115EPSS
Exploits0References6
Prion
Prion
added 2020/03/22 5:15 a.m.25 views

Sql injection

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

6CVSS8AI score0.02115EPSS
Exploits0References8Affected Software5
CVE
CVE
added 2020/03/22 3:48 a.m.291 views

CVE-2020-10802

CVE-2020-10802 affects phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2. A SQL injection exists due to improper escaping of certain parameters when generating search queries in libraries/classes/Controllers/Table/TableSearchController.php, enabling an attacker to craft database/table names during...

8CVSS7.9AI score0.02115EPSS
Exploits0References8Affected Software1
AlpineLinux
AlpineLinux
added 2020/03/22 3:48 a.m.41 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8CVSS8.2AI score0.02115EPSS
Exploits0
Cvelist
Cvelist
added 2020/03/22 3:48 a.m.42 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8AI score0.02115EPSS
Exploits0References8
NVD
NVD
added 2014/05/26 4:29 a.m.16 views

CVE-2014-0906

The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not check whether a session cookie is current, which allows remote attackers to conduct user-search actions by leveraging possession of a 1 expired or 2 invalidated cookie...

4.3CVSS6.5AI score0.01373EPSS
Exploits0References2
Prion
Prion
added 2014/05/26 4:29 a.m.19 views

Code injection

The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not check whether a session cookie is current, which allows remote attackers to conduct user-search actions by leveraging possession of a 1 expired or 2 invalidated cookie...

4.3CVSS7AI score0.01373EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/05/26 1:0 a.m.24 views

CVE-2014-0906

The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not check whether a session cookie is current, which allows remote attackers to conduct user-search actions by leveraging possession of a 1 expired or 2 invalidated cookie...

6.5AI score0.01373EPSS
Exploits0References2
Rows per page
Query Builder