| CVE-2026-7813 |
critical |
9.9 |
9.9 |
17d ago |
pgAdmin 4 server mode has an authorization vulnerability affecting Server Groups, Servers, Shared Servers, Background Processes, and Debugger modules |
|
| CVE-2026-7816 |
high |
8.8 |
8.8 |
17d ago |
pgAdmin 4: OS command injection vulnerability in Import/Export query export |
|
| CVE-2026-7815 |
high |
8.8 |
8.8 |
17d ago |
SQL injection vulnerability in pgAdmin 4 Maintenance Tool |
|
| CVE-2026-7819 |
high |
8.1 |
8.1 |
17d ago |
pgAdmin 4 File Manager has symbolic-link path traversal |
|
| CVE-2026-7818 |
high |
7.8 |
7.8 |
17d ago |
pgAdmin 4 has deserialization of untrusted data in its FileBackedSessionManager |
|
| CVE-2026-7820 |
medium |
6.5 |
6.5 |
17d ago |
pgAdmin 4: Improper restriction of excessive authentication attempts |
|
| CVE-2026-7817 |
medium |
6.5 |
6.5 |
17d ago |
pgAdmin 4 contains local file inclusion (LFI) and server-side request forgery (SSRF) vulnerabilities |
|
| CVE-2026-7814 |
medium |
4.8 |
4.8 |
17d ago |
pgAdmin 4: Stored cross-site scripting (XSS) vulnerability in Browser Tree and Explain Visualizer modules |
|