SQL Injection in phpMyAdmin Versions by phpMyAdmin
CVE-2020-10803
5.4MEDIUM
What is CVE-2020-10803?
A SQL injection vulnerability exists in phpMyAdmin versions prior to 4.9.5 and 5.0.2 that can lead to potential XSS exploitation. This vulnerability occurs when an attacker is able to insert malicious code into specific database tables. If this crafted data is retrieved, particularly through the Browse tab in the application, it can result in executing unintended scripts in the user's browser environment. This highlight emphasizes the importance of maintaining updated versions of phpMyAdmin to mitigate the associated security risks.