GHSA-f732-fxh6-g4qj

Опубликовано: 14 мая 2022

Источник: github

Github: Прошло ревью

CVSS3: 9.8

Описание

phpMyAdmin SQL injection in Designer feature

An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature.

Ссылки

Пакеты

Наименование

phpmyadmin/phpmyadmin

composer

Затронутые версииВерсия исправления

< 4.8.5

4.8.5

EPSS

Процентиль: 67%

0.00538

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2019-6798

Дефекты

CWE-89

Связанные уязвимости

CVE-2019-6798

CVSS3: 9.8

ubuntu

около 7 лет назад

An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature.

CVE-2019-6798

CVSS3: 9.8

nvd

около 7 лет назад

An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature.

CVE-2019-6798

CVSS3: 9.8

debian

около 7 лет назад

An issue was discovered in phpMyAdmin before 4.8.5. A vulnerability wa ...

openSUSE-SU-2019:0194-1

suse-cvrf

почти 7 лет назад

Security update for phpMyAdmin

EPSS

Процентиль: 67%

0.00538

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2019-6798

Дефекты

CWE-89