VDB

CVE-2018-10188

CVE-2018-10188 PUBLISHED

Reported by mitre · Published April 19, 2018

phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to execute arbitrary SQL statements, related to js/db_operations.js, js/tbl_operations.js, libraries/classes/Operations.php, and sql.php.

Affected Products

VendorProductVersions
n/an/an/a
alpinephpmyadmin0, 0, 0
n/an/an/a

Timeline

  • Apr 19, 2018 CVE Published
  • Apr 23, 2018 PoC Published
  • May 21, 2018 CVE Updated
  • Apr 14, 2021 EPSS Score
  • Jun 22, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 25, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 27, 2022 EPSS Score
  • May 1, 2022 EPSS Score
  • Jul 2, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score

References

  • 103936 vdb-entryx_refsource_BID
  • 1040752 vdb-entryx_refsource_SECTRACK
  • x_refsource_CONFIRM
  • 44496 exploitx_refsource_EXPLOIT-DB
Open in Interactive Console →
$ Console Community · 100/wk Open console ›