PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating invalid requests. This affects the lang parameter, the pma_parameter, and the cookie section.

The remote host is affected by the vulnerability described in GLSA-202311-17 (phpMyAdmin: Multiple Vulnerabilities)

  - PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating     invalid requests. This affects the lang parameter, the pma_parameter, and the cookie section.
    (CVE-2022-0813)

  - An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. A valid user who is already     authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future     login instances. (CVE-2022-23807)

  - An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker can inject malicious code into aspects     of the setup script, which can allow XSS or HTML injection. (CVE-2022-23808)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0047-1 advisory.

  - PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating     invalid requests. This affects the lang parameter, the pma_parameter, and the cookie section.
    (CVE-2022-0813)

  - An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. A valid user who is already     authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future     login instances. (CVE-2022-23807)

  - An issue was discovered in phpMyAdmin 5.1 before 5.1.2. An attacker can inject malicious code into aspects     of the setup script, which can allow XSS or HTML injection. (CVE-2022-23808)

  - In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger XSS by uploading a     crafted .sql file through the drag-and-drop interface. (CVE-2023-25727)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of phpMyAdmin installed on the remote web server is 4.9.x prior to 4.9.10 or 5.1.x prior to 5.1.3. It is, therefore, affected by an information disclosure that would reveal the path on disk where phpMyAdmin is running from.

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
186286	GLSA-202311-17 : phpMyAdmin: Multiple Vulnerabilities	Nessus	Gentoo Local Security Checks	high
171533	openSUSE 15 Security Update : phpMyAdmin (openSUSE-SU-2023:0047-1)	Nessus	SuSE Local Security Checks	high
113457	phpMyAdmin 4.9.x < 4.9.10 Information Disclosure	Web App Scanning	Component Vulnerability	high
113456	phpMyAdmin 5.1.x < 5.1.3 Information Disclosure	Web App Scanning	Component Vulnerability	high

Detections

Analytics

CVE-2022-0813

high

Tenable Plugins

high

high

high

high