rpm package
opensuse/phpMyAdmin&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/phpMyAdmin&distro=openSUSE%20Leap%2015.2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-26934 | — | < 4.9.6-bp152.2.3.1 | 4.9.6-bp152.2.3.1 | Oct 10, 2020 | phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link. | ||
| CVE-2020-26935 | — | < 4.9.6-bp152.2.3.1 | 4.9.6-bp152.2.3.1 | Oct 10, 2020 | An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query. |
- CVE-2020-26934Oct 10, 2020affected < 4.9.6-bp152.2.3.1fixed 4.9.6-bp152.2.3.1
phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link.
- CVE-2020-26935Oct 10, 2020affected < 4.9.6-bp152.2.3.1fixed 4.9.6-bp152.2.3.1
An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query.