VYPR

rpm package

suse/phpMyAdmin&distro=SUSE Package Hub 15 SP3

pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2015%20SP3

Vulnerabilities (2)

  • CVE-2023-25727Feb 13, 2023
    affected < 4.9.11-bp153.2.6.1fixed 4.9.11-bp153.2.6.1

    In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a crafted .sql file through the drag-and-drop interface.

  • CVE-2022-23807Jan 22, 2022
    affected < 4.9.11-bp153.2.6.1fixed 4.9.11-bp153.2.6.1

    An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. A valid user who is already authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future login instances.