Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

pgAdmin 4 — Vulnerabilities & Security Advisories 16

All 16 CVE vulnerabilities found in pgAdmin 4, with AI-generated Chinese analysis, references, and POCs.

Vendor: pgAdmin Project

CVE IDTitleCVSSSeverityPublished
CVE-2026-1707 Restore restriction bypass via key disclosure vulnerability (pgAdmin 4) 7.4 High2026-02-05
CVE-2025-13780 Remote Code Execution vulnerability when restoring PLAIN-format SQL dumps in server mode (pgAdmin 4) 9.1 Critical2025-12-11
CVE-2025-12765 pgAdmin 4: LDAP authentication flow vulnerable to TLS certificate verification bypass. 7.5 High2025-11-13
CVE-2025-12764 pgAdmin 4: LDAP injection vulnerability in LDAP authentication flow. 7.5 High2025-11-13
CVE-2025-12763 Command injection vulnerability allowing arbitrary command execution on Windows 6.8 Medium2025-11-13
CVE-2025-12762 Remote Code Execution vulnerability when restoring PLAIN-format SQL dumps in server mode (pgAdmin 4) 9.1 Critical2025-11-13
CVE-2025-9636 Cross-Origin Opener Policy Vulnerability in pgAdmin 4 7.9 High2025-09-04
CVE-2025-2946 Cross-Site Vulnerability(XSS) due to arbitrary HTML/JavaScript gets executed while query result rendering in Query Tool and View/Edit Data Tool of pgAdmin 4 9.1 Critical2025-04-03
CVE-2025-2945 pgAdmin 4: Remote Code Execution in Query Tool and Cloud Deployment 9.9 Critical2025-04-03
CVE-2024-9014 OAuth2 client id and secret exposed through the web browser in pgAdmin 4 9.9 Critical2024-09-23
CVE-2024-6238 pgAdmin 4 Installation Directory permission issue 7.4 High2024-06-25
CVE-2024-4216 XSS vulnerability in /settings/store API response json payload in pgAdmin 4 7.4 High2024-05-02
CVE-2024-4215 The Multi Factor Authentication bypass vulnerability in pgAdmin 4 7.4 High2024-05-02
CVE-2024-3116 Remote Code Execution Vulnerability through the validate binary path API in pgAdmin 4 7.4 High2024-04-04
CVE-2024-2044 Unsafe Deserialisation and Remote Code Execution by an Authenticated user in pgAdmin 4 9.9 Critical2024-03-07
CVE-2023-22298 pgAdmin 输入验证错误漏洞 6.1 -2023-01-17

All 16 known CVE vulnerabilities affecting pgAdmin 4 with full Chinese analysis, references, and POCs where available.