Critical severityNVD Advisory· Published Nov 22, 2019· Updated Aug 5, 2024
CVE-2019-18622
CVE-2019-18622
Description
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
phpmyadmin/phpmyadminPackagist | < 4.9.2 | 4.9.2 |
Affected products
8- phpMyAdmin/phpMyAdmindescription
- ghsa-coords7 versionspkg:composer/phpmyadmin/phpmyadminpkg:rpm/opensuse/phpMyAdmin&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/phpMyAdmin&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/phpMyAdmin&distro=openSUSE%20Tumbleweedpkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2015pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2015%20SP1
< 4.9.2+ 6 more
- (no CPE)range: < 4.9.2
- (no CPE)range: < 4.9.2-bp151.3.9.1
- (no CPE)range: < 4.9.2-bp151.3.9.1
- (no CPE)range: < 5.1.1-1.2
- (no CPE)range: < 4.9.2-bp151.3.9.1
- (no CPE)range: < 4.9.2-bp151.3.9.1
- (no CPE)range: < 4.9.2-bp151.3.9.1
Patches
Vulnerability mechanics
References
12- lists.opensuse.org/opensuse-security-announce/2019-12/msg00002.htmlghsavendor-advisoryx_refsource_SUSEWEB
- lists.opensuse.org/opensuse-security-announce/2020-01/msg00024.htmlghsavendor-advisoryx_refsource_SUSEWEB
- github.com/advisories/GHSA-jgjc-332c-8cmcghsaADVISORY
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA4DGF7KTQS6WA2DRNJSW66L43WB7LRV/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W5GW4KEMNCBQYZCIXEJYC42OEBBN2NSH/mitrevendor-advisoryx_refsource_FEDORA
- nvd.nist.gov/vuln/detail/CVE-2019-18622ghsaADVISORY
- security.gentoo.org/glsa/202003-39ghsavendor-advisoryx_refsource_GENTOOWEB
- github.com/phpmyadmin/composer/commit/51acbf53564d9b52e78509a5688ec2b68976b5f7ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BA4DGF7KTQS6WA2DRNJSW66L43WB7LRVghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W5GW4KEMNCBQYZCIXEJYC42OEBBN2NSHghsaWEB
- www.phpmyadmin.net/security/PMASA-2019-5ghsaWEB
- www.phpmyadmin.net/security/PMASA-2019-5/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.