CVE-2022-23808

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-23808
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-23808.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-23808
Aliases
Downstream
Related
Published
2022-01-22T02:15:07.197Z
Modified
2026-03-13T05:29:31.735094Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker can inject malicious code into aspects of the setup script, which can allow XSS or HTML injection.

References

Affected packages

Git / github.com/phpmyadmin/phpmyadmin

Affected ranges

Type
GIT
Repo
https://github.com/phpmyadmin/phpmyadmin
Events
Introduced
333edd4a793e95a04ee97951ee48807350dca728
Fixed
62563091364a6fcebb67bace94febbd4acdca0f7
Database specific 
{
    "versions": [
        {
            "introduced": "5.1.0"
        },
        {
            "fixed": "5.1.2"
        }
    ]
}

Affected versions

Other
RELEASE_4_9_8
RELEASE_5_1_0
RELEASE_5_1_1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-23808.json"