Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:ebuild/dev-db/phpmyadmin@5.2.0
purl pkg:ebuild/dev-db/phpmyadmin@5.2.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-na3j-h3qr-k7dc Improper Authentication An issue was discovered in phpMyAdm. A valid user who is already authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future login instances. CVE-2022-23807
GHSA-8wf2-3ggj-78q9
VCID-ndjn-p6gb-u7g4 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') An attacker can inject malicious code into aspects of the setup script, which can allow XSS or HTML injection. CVE-2022-23808
GHSA-vcwc-6mr9-8m7c
VCID-rqy8-n6fr-hqey Exposure of Sensitive Information to an Unauthorized Actor PhpMyAdmin 5.1.1 and before allows an attacker to retrieve potentially sensitive information by creating invalid requests. This affects the lang parameter, the pma_parameter, and the cookie section. CVE-2022-0813
GHSA-vx8q-j7h9-vf6q

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:12:27.752499+00:00 Gentoo Importer Fixing VCID-ndjn-p6gb-u7g4 https://security.gentoo.org/glsa/202311-17 38.0.0
2026-04-01T13:12:27.741539+00:00 Gentoo Importer Fixing VCID-na3j-h3qr-k7dc https://security.gentoo.org/glsa/202311-17 38.0.0
2026-04-01T13:12:27.731742+00:00 Gentoo Importer Fixing VCID-rqy8-n6fr-hqey https://security.gentoo.org/glsa/202311-17 38.0.0