phpmyadmin vulnerabilities

Known vulnerabilities in the phpmyadmin package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M Resource Exhaustion	*
M Cross-site Scripting (XSS)	*
L CVE-2016-6633	*
M Cross-site Scripting (XSS)	*
M SQL Injection	*
M SQL Injection	*
M CVE-2019-19617	<4:4.0.10-1ubuntu0.1+esm2
M Cross-site Request Forgery (CSRF)	<4:4.0.10-1ubuntu0.1+esm1
M Cross-site Request Forgery (CSRF)	<4:4.0.10-1ubuntu0.1+esm1
M CVE-2019-6799	*
M Cross-site Request Forgery (CSRF)	*
M Cross-site Scripting (XSS)	<4:4.0.10-1ubuntu0.1+esm1
M Information Exposure	<4:4.0.10-1ubuntu0.1+esm4
M Cross-site Scripting (XSS)	<4:4.0.10-1ubuntu0.1+esm1
M CVE-2017-18264	<4:4.0.10-1ubuntu0.1+esm4
L Open Redirect	*
M Improper Input Validation	<4:4.0.10-1ubuntu0.1+esm4
L Improper Input Validation	*
L Server-Side Request Forgery (SSRF)	*
M Cross-site Scripting (XSS)	<4:4.0.10-1ubuntu0.1+esm4
M Server-Side Request Forgery (SSRF)	*
M Improper Input Validation	*
M Cross-site Request Forgery (CSRF)	<4:4.0.10-1ubuntu0.1+esm3
M Security Features	*
M Security Features	*
M SQL Injection	*
M SQL Injection	*
M SQL Injection	*
L Information Exposure	*
L Directory Traversal	*
M Improper Input Validation	*
L CVE-2016-6618	*
L Information Exposure	*
M Cryptographic Issues	*
L Cross-site Scripting (XSS)	*
M Security Features	*
M Security Features	*
L Information Exposure	*
H OS Command Injection	<4:4.0.10-1ubuntu0.1
M Improper Input Validation	<4:4.0.10-1ubuntu0.1+esm3
M Security Features	*
L Resource Management Errors	*
M SQL Injection	<4:4.0.10-1ubuntu0.1+esm3
M Arbitrary Command Injection	<4:4.0.10-1ubuntu0.1+esm3
L Resource Management Errors	*
M Information Exposure	*
M Security Features	*
M Improper Input Validation	*
M Security Features	*
M Access Restriction Bypass	<4:4.0.10-1ubuntu0.1+esm3
M Information Exposure	*
L Information Exposure	*
M Security Features	*
L Cross-site Scripting (XSS)	*
M Security Features	*
H Cryptographic Issues	<4:4.0.10-1ubuntu0.1
M Deserialization of Untrusted Data	*
M Improper Input Validation	*
L Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Information Exposure	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Arbitrary Code Injection	*
M Cross-site Scripting (XSS)	*
M Information Exposure	*
M Information Exposure	*
M Cross-site Scripting (XSS)	*
M Security Features	*
M SQL Injection	*
L Resource Management Errors	*
L Cross-site Scripting (XSS)	*
M Arbitrary Code Injection	*
M Cross-site Scripting (XSS)	*
M Improper Input Validation	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
L Information Exposure	*
L Information Exposure	*
M Information Exposure	*
M Cross-site Scripting (XSS)	*
M Security Features	*
M Credentials Management	*
L Information Exposure	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Information Exposure	*
M Cross-site Request Forgery (CSRF)	*
M Cryptographic Issues	*
L Information Exposure	*
M Resource Management Errors	<4:4.0.10-1ubuntu0.1+esm4
M Cross-site Scripting (XSS)	*
M Directory Traversal	*
M Cross-site Scripting (XSS)	*
L Directory Traversal	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Access Restriction Bypass	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*

Vulnerability

Vulnerable Version

Resource Exhaustion