CNNVD-202511-2351 Information

Nov 20, 2025 cve

CNNVD ID

CNNVD-202511-2351

CVE-2025-60796

  • CNNVD Published: 2025-11-20

Description (Chinese)

phpPgAdmin是phppgadmin开源的一个应用软件。用于 postgresql 的首要基于 Web 的管理工具。 phpPgAdmin 7.13.0及之前版本存在安全漏洞,该漏洞源于多个组件未对用户输入进行适当编码或清理,可能导致跨站脚本攻击。

Description (English)

phpPgAdmin is a phpgadmin open source application. The primary Web-based management tool for postgresql. phpPgAdmin 7.1.3.0 and previous versions contain a security loophole that arises from multiple components that do not properly code or clean up user input and may result in a cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

phppgadmin

Published

2025-11-20

Last Modified

2026-02-24

References

https://github.com/phppgadmin/phppgadmin/blob/master/admin.php#L35 https://github.com/phppgadmin/phppgadmin/blob/master/indexes.php#L29 https://github.com/phppgadmin/phppgadmin/blob/master/sequences.php#L316 https://github.com/pr0wl1ng/security-advisories/blob/main/CVE-2025-60796.md https://access.redhat.com/security/cve/cve-2025-60796

Share on: