Vulnerabilidades en pgadmin.org
30 resultadosCVE-2026-12049MEDIUMpgAdmin 4: Open redirect in multi-factor authentication flow via unvalidated 'next' parameterEPSS 0.3%CVE-2024-6238HIGHpgAdmin 4 Installation Directory permission issueEPSS 0.2%CVE-2026-7817HIGHpgAdmin 4: Local file inclusion and server-side request forgery in LLM API configuration endpointsEPSS 0.2%CVE-2025-9636HIGHCross-Origin Opener Policy Vulnerability in pgAdmin 4EPSS 0.2%CVE-2026-7820MEDIUMpgAdmin 4: Account-lockout bypass via Flask-Security default /login viewEPSS 0.2%CVE-2026-12050MEDIUMpgAdmin 4: SQL injection in named restore point endpointEPSS 0.2%CVE-2025-12765HIGHpgAdmin 4: LDAP authentication flow vulnerable to TLS certificate verification bypass.EPSS 0.2%CVE-2026-7814MEDIUMpgAdmin 4: Stored XSS via crafted PostgreSQL object names in Browser Tree and Explain VisualizerEPSS 0.2%CVE-2026-12047MEDIUMpgAdmin 4: HTML injection in cloud verify_credentials / deploy endpoints via unsanitised SDK exception textEPSS 0.2%CVE-2026-7818HIGHpgAdmin 4: Unsafe deserialization (CWE-502) in file-backed session manager leads to remote code executionEPSS 0.1%