← volver
CVE-2020-26935

CVE-2020-26935

EPSS 67.1%
Vexday Risk Score
30Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS EPSS 67.1%KEV nãoPoC Nuclei simMetasploit Patch referenciado
Ciclo de vida
10 oct 2020Publicada en NVD
Recomendación: Planificar corrección próxima — ya existe PoC pública.
An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. A SQL injection vulnerability was discovered in how phpMyAdmin processes SQL statements in the search feature. An attacker could use this flaw to inject malicious SQL in to a query.
Productos afectados
n/a · n/a