← Back

Phpmsadmin

phpmsadmin

Vendor: Craigtaub • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-63948
1Craigtaub
1Phpmsadmin
Dec 31, 2025
Dec 18, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A SQL Injection vulnerability exists in phpMsAdmin version 2.2 in the database_mode.php file. An attacker can execute arbitrary SQL commands via the dbname parameter, potentially leading to information disclosure or data...Show more
A SQL Injection vulnerability exists in phpMsAdmin version 2.2 in the database_mode.php file. An attacker can execute arbitrary SQL commands via the dbname parameter, potentially leading to information disclosure or database manipulation.Show less
CVE-2025-63947
1Craigtaub
1Phpmsadmin
Jan 6, 2026
Dec 18, 2025
N/A· v4
5.4 MEDIUM· v3
N/A· v2
A Reflected Cross-Site Scripting (XSS) vulnerability exists in phpMsAdmin version 2.2 in the database_mode.php file. An attacker can execute arbitrary web script or HTML via the dbname parameter after a user is authentic...Show more
A Reflected Cross-Site Scripting (XSS) vulnerability exists in phpMsAdmin version 2.2 in the database_mode.php file. An attacker can execute arbitrary web script or HTML via the dbname parameter after a user is authenticated.Show less