VulnerableCode Package Details - pkg:apk/alpine/phpmyadmin@4.9.0.1-r0?arch=x86&distroversion=edge&reponame=community

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/phpmyadmin@4.9.0.1-r0?arch=x86&distroversion=edge&reponame=community

purl	pkg:apk/alpine/phpmyadmin@4.9.0.1-r0?arch=x86&distroversion=edge&reponame=community

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-jma9-9uhu-xuc3	SQL Injection A vulnerability was reported where a specially crafted database name can be used to trigger an SQL injection attack through the designer feature.	CVE-2019-11768 GHSA-x37v-98f9-mj32
VCID-scu3-cfyc-9qfz	Cross-Site Request Forgery (CSRF) A vulnerability was found that allows an attacker to trigger a CSRF attack against a phpMyAdmin user. The attacker can trick the user, for instance through a broken `<img>` tag pointing at the victim's phpMyAdmin database, and the attacker can potentially deliver a payload (such as a specific `INSERT` or `DELETE` statement) to the victim.	CVE-2019-12616 GHSA-mfr9-pcm3-6mwc

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-07T13:57:24.693274+00:00	Alpine Linux Importer	Fixing	VCID-jma9-9uhu-xuc3	https://secdb.alpinelinux.org/edge/community.json	38.1.0
2026-04-03T17:44:27.880891+00:00	Alpine Linux Importer	Fixing	VCID-scu3-cfyc-9qfz	https://secdb.alpinelinux.org/edge/community.json	38.1.0