GHSA-jgjc-332c-8cmc

Опубликовано: 16 янв. 2020

Источник: github

Github: Прошло ревью

CVSS3: 9.8

Описание

SQL injection in phpMyAdmin

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.

Ссылки

Пакеты

Наименование

phpmyadmin/phpmyadmin

composer

Затронутые версииВерсия исправления

< 4.9.2

4.9.2

EPSS

Процентиль: 76%

0.00961

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2019-18622

Дефекты

CWE-89

Связанные уязвимости

CVE-2019-18622

CVSS3: 9.8

ubuntu

больше 5 лет назад

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.

CVE-2019-18622

CVSS3: 9.8

nvd

больше 5 лет назад

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.

CVE-2019-18622

CVSS3: 9.8

debian

больше 5 лет назад

An issue was discovered in phpMyAdmin before 4.9.2. A crafted database ...

openSUSE-SU-2019:2599-1

suse-cvrf

больше 5 лет назад

Security update for phpMyAdmin

openSUSE-SU-2020:0056-1

suse-cvrf

больше 5 лет назад

Security update for phpMyAdmin

EPSS

Процентиль: 76%

0.00961

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2019-18622

Дефекты

CWE-89