phpmyadmin vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the phpmyadmin package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Resource Exhaustion	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M SQL Injection	*
M SQL Injection	*
M SQL Injection	<4:4.5.4.1-2ubuntu2.1+esm6
M CVE-2019-19617	<4:4.5.4.1-2ubuntu2.1+esm4
M Cross-site Request Forgery (CSRF)	<4:4.5.4.1-2ubuntu2.1+esm3
M SQL Injection	*
M Cross-site Request Forgery (CSRF)	<4:4.5.4.1-2ubuntu2.1+esm3
M CVE-2019-6799	*
M SQL Injection	*
M Cross-site Scripting (XSS)	<4:4.5.4.1-2ubuntu2.1+esm3
M Cross-site Request Forgery (CSRF)	*
M Information Exposure	<4:4.5.4.1-2ubuntu2.1+esm6
M Cross-site Scripting (XSS)	<4:4.5.4.1-2ubuntu2.1+esm3
M CVE-2017-18264	<4:4.5.4.1-2ubuntu2.1+esm3
M Cross-site Scripting (XSS)	*
M Improper Input Validation	<4:4.5.4.1-2ubuntu2.1+esm6
L Server-Side Request Forgery (SSRF)	*
M Cross-site Scripting (XSS)	<4:4.5.4.1-2ubuntu2.1+esm6
L Open Redirect	*
L Improper Input Validation	*
M Server-Side Request Forgery (SSRF)	*
M Improper Input Validation	*
M Cross-site Request Forgery (CSRF)	<4:4.5.4.1-2ubuntu2.1+esm5
M Security Features	*
M Security Features	*
M SQL Injection	*
L Information Exposure	*
L Information Exposure	*
L Information Exposure	*
M SQL Injection	*
L CVE-2016-6618	*
L Information Exposure	*
H OS Command Injection	<4:4.5.4.1-2ubuntu2.1
L Cross-site Scripting (XSS)	*
M Access Restriction Bypass	<4:4.5.4.1-2ubuntu2.1+esm5
M Security Features	*
M SQL Injection	<4:4.5.4.1-2ubuntu2.1+esm5
L Resource Management Errors	*
L Resource Management Errors	*
M SQL Injection	*
L Information Exposure	*
M Improper Input Validation	*
M Improper Input Validation	*
M Information Exposure	*
M Security Features	*
M Security Features	*
M Improper Input Validation	*
M Cryptographic Issues	*
M Security Features	*
M Information Exposure	*
L Information Exposure	*
M Security Features	*
L Information Exposure	*
M Deserialization of Untrusted Data	*
L Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
L Directory Traversal	*
M Security Features	*
M Arbitrary Command Injection	<4:4.5.4.1-2ubuntu2.1+esm5
M Improper Input Validation	<4:4.5.4.1-2ubuntu2.1+esm5
H Cryptographic Issues	<4:4.5.4.1-2ubuntu2.1
L Cross-site Scripting (XSS)	*
L Information Exposure	*
M Cross-site Scripting (XSS)	*
M Information Exposure	*
L Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Information Exposure	*
M Arbitrary Code Injection	*
M Cross-site Scripting (XSS)	*
M Arbitrary Code Injection	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Security Features	*
M SQL Injection	*
L Resource Management Errors	*
M Information Exposure	*
M Improper Input Validation	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*

Vulnerability

Vulnerable Version

Resource Exhaustion