Phppgadmin Project Phppgadmin — known CVE vulnerabilities
Every CVE whose affected-product data names Phppgadmin Project Phppgadmin, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-40619 — CVSS 9.8 (critical): phpPgAdmin 7.14.4 and earlier is vulnerable to deserialization of untrusted data which may lead to remote code execution because…
CVE-2019-10784 — CVSS 9.6 (critical): phppgadmin through 7.12.1 allows sensitive actions to be performed without validating that the request originated from the application. One…
CVE-2025-60797 — CVSS 6.5 (medium): phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in dataexport.php at line 118. The application directly executes…
CVE-2025-60798 — CVSS 6.5 (medium): phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability in display.php at line 396. The application passes user-controlled…
CVE-2025-60796 — CVSS 6.1 (medium): phpPgAdmin 7.13.0 and earlier contains multiple cross-site scripting (XSS) vulnerabilities across various components. User-supplied input…
CVE-2025-60799 — CVSS 6.1 (medium): phpPgAdmin 7.13.0 and earlier contains an incorrect access control vulnerability in sql.php at lines 68-76. The application allows…
CVE-2012-1600 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before 5.0.4 allow remote attackers to inject arbitrary…