Homepage

phpmyadmin vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the phpmyadmin package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Resource Exhaustion

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
SQL Injection

*
  • M
SQL Injection

*
  • M
SQL Injection

<4:4.5.4.1-2ubuntu2.1+esm6
  • M
CVE-2019-19617

*
  • M
Cross-site Request Forgery (CSRF)

*
  • M
Cross-site Request Forgery (CSRF)

*
  • M
SQL Injection

*
  • M
CVE-2019-6799

*
  • M
SQL Injection

*
  • M
Cross-site Request Forgery (CSRF)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Information Exposure

*
  • M
Cross-site Scripting (XSS)

*
  • M
CVE-2017-18264

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • L
Improper Input Validation

*
  • L
Open Redirect

*
  • M
Improper Input Validation

*
  • L
Server-Side Request Forgery (SSRF)

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
Improper Input Validation

*
  • M
Cross-site Request Forgery (CSRF)

*
  • M
Security Features

*
  • M
Security Features

*
  • M
SQL Injection

*
  • L
Cross-site Scripting (XSS)

*
  • L
Information Exposure

*
  • L
Information Exposure

*
  • L
Information Exposure

*
  • M
Cross-site Scripting (XSS)

*
  • M
SQL Injection

*
  • L
CVE-2016-6618

*
  • M
Access Restriction Bypass

*
  • L
Information Exposure

*
  • L
Information Exposure

*
  • H
OS Command Injection

<4:4.5.4.1-2ubuntu2.1
  • M
SQL Injection

*
  • L
Resource Management Errors

*
  • L
Resource Management Errors

*
  • M
SQL Injection

*
  • L
Information Exposure

*
  • H
Cryptographic Issues

<4:4.5.4.1-2ubuntu2.1
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Information Exposure

*
  • M
Security Features

*
  • M
Security Features

*
  • M
Improper Input Validation

*
  • M
Cryptographic Issues

*
  • M
Security Features

*
  • M
Information Exposure

*
  • L
Information Exposure

*
  • M
Security Features

*
  • L
Information Exposure

*
  • M
Deserialization of Untrusted Data

*
  • L
Cross-site Scripting (XSS)

*
  • M
Security Features

*
  • L
Directory Traversal

*
  • M
Security Features

*
  • M
Arbitrary Command Injection

*
  • L
Cross-site Scripting (XSS)

*
  • M
Improper Input Validation

*
  • M
Cross-site Scripting (XSS)

*
  • M
Information Exposure

*
  • L
Resource Management Errors

*
  • M
Arbitrary Code Injection

*
  • M
Cross-site Scripting (XSS)

*
  • M
Arbitrary Code Injection

*
  • M
Cross-site Scripting (XSS)

*
  • L
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Information Exposure

*
  • M
SQL Injection

*
  • M
Security Features

*
  • M
Cross-site Scripting (XSS)

*
  • M
Information Exposure

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Cross-site Scripting (XSS)

*
  • M
Improper Input Validation

*