rpm package
suse/phpMyAdmin&distro=SUSE Package Hub 15 SP2
pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2015%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-26934 | — | < 4.9.6-bp152.2.3.1 | 4.9.6-bp152.2.3.1 | Oct 10, 2020 | phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link. | ||
| CVE-2020-26935 | — | < 4.9.6-bp152.2.3.1 | 4.9.6-bp152.2.3.1 | Oct 10, 2020 | An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query. |
- CVE-2020-26934Oct 10, 2020affected < 4.9.6-bp152.2.3.1fixed 4.9.6-bp152.2.3.1
phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the transformation feature via a crafted link.
- CVE-2020-26935Oct 10, 2020affected < 4.9.6-bp152.2.3.1fixed 4.9.6-bp152.2.3.1
An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query.