pgadmin4
PyPI25 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting pgadmin4page 1 of 1
- CVE-2022-0959MEDIUMCVSS 6.5EG 6.5✓ Fixed in 6.72022-03-16
vulnerable: 4.20 ... 6.6 (23 versions)
A malicious, but authorised and authenticated user can construct an HTTP request using their existing CSRF token and session cookie to manually upload files to any location that the operating system user account under which pgAdmin is runn…
- CVE-2022-4223HIGHCVSS 8.8EG 9.0✓ Fixed in 6.172022-12-13
vulnerable: 4.20 ... 6.9 (33 versions)
The pgAdmin server includes an HTTP API that is intended to be used to validate the path a user selects to external PostgreSQL utilities such as pg_dump and pg_restore. The utility is executed by the server to determine what PostgreSQL ver…
- CVE-2023-0241MEDIUMCVSS 6.5EG 6.5✓ Fixed in 6.192023-03-27
vulnerable: 4.20 ... 6.9 (35 versions)
pgAdmin 4 versions prior to v6.19 contains a directory traversal vulnerability. A user of the product may change another user's settings or alter the database.
- CVE-2023-22298MEDIUMCVSS 6.1EG 6.1✓ Fixed in 6.142023-01-17
vulnerable: 4.20 ... 6.9 (30 versions)
Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
- CVE-2023-5002MEDIUMCVSS 6.0EG 6.0✓ Fixed in 7.72023-09-22
vulnerable: 4.20 ... 7.6 (45 versions)
A flaw was found in pgAdmin. This issue occurs when the pgAdmin server HTTP API validates the path a user selects to external PostgreSQL utilities such as pg_dump and pg_restore. Versions of pgAdmin prior to 7.6 failed to properly control …
- CVE-2024-2044CRITICALCVSS 9.9EG 9.9✓ Fixed in 8.42024-03-07
vulnerable: 4.20 ... 8.3 (51 versions)
pgAdmin <= 8.3 is affected by a path-traversal vulnerability while deserializing users’ sessions in the session handling code. If the server is running on Windows, an unauthenticated attacker can load and deserialize remote pickle object…
- CVE-2024-3116HIGHCVSS 7.4EG 9.0✓ Fixed in 8.52024-04-04
vulnerable: 4.20 ... 8.4 (52 versions)
pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the validate binary path API. This vulnerability allows attackers to execute arbitrary code on the server hosting PGAdmin, posing a severe risk to the datab…
- CVE-2024-4215HIGHCVSS 7.4EG 7.4✓ Fixed in 8.62024-05-02
vulnerable: 4.20 ... 8.5 (53 versions)
pgAdmin <= 8.5 is affected by a multi-factor authentication bypass vulnerability. This vulnerability allows an attacker with knowledge of a legitimate account’s username and password may authenticate to the application and perform sensit…
- CVE-2024-4216HIGHCVSS 7.4EG 7.4✓ Fixed in 8.62024-05-02
vulnerable: 4.20 ... 8.5 (53 versions)
pgAdmin <= 8.5 is affected by XSS vulnerability in /settings/store API response json payload. This vulnerability allows attackers to execute malicious script at the client end.
- CVE-2024-9014CRITICALCVSS 9.9EG 9.9✓ Fixed in 8.122024-09-23
vulnerable: 4.20 ... 8.9 (59 versions)
pgAdmin versions 8.11 and earlier are vulnerable to a security flaw in OAuth2 authentication. This vulnerability allows an attacker to potentially obtain the client ID and secret, leading to unauthorized access to user data.
- CVE-2025-12763MEDIUMCVSS 6.8EG 6.8✓ Fixed in 9.102025-11-13
vulnerable: 4.20 ... 9.9 (72 versions)
pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. This issue is caused by the use of shell=True during backup and restore operations, enabling attackers to execute arbitrary system commands …
- CVE-2025-12764HIGHCVSS 7.5EG 7.5✓ Fixed in 9.102025-11-13
vulnerable: 4.20 ... 9.9 (72 versions)
pgAdmin <= 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amou…
- CVE-2025-12765HIGHCVSS 7.5EG 7.5✓ Fixed in 9.102025-11-13
vulnerable: 4.20 ... 9.9 (72 versions)
pgAdmin <= 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification.
- CVE-2025-2945CRITICALCVSS 9.9EG 9.9✓ Fixed in 9.22025-04-03
vulnerable: 4.20 ... 9.1 (64 versions)
Remote Code Execution security vulnerability in pgAdmin 4 (Query Tool and Cloud Deployment modules). The vulnerability is associated with the 2 POST endpoints; /sqleditor/query_tool/download, where the query_commited parameter and /clo…
- CVE-2025-2946CRITICALCVSS 9.1EG 9.1✓ Fixed in 9.22025-04-03
vulnerable: 4.20 ... 9.1 (64 versions)
pgAdmin <= 9.1 is affected by a security vulnerability with Cross-Site Scripting(XSS). If attackers execute any arbitrary HTML/JavaScript in a user's browser through query result rendering, then HTML/JavaScript runs on the browser.
- CVE-2025-9636HIGHCVSS 7.9EG 7.9✓ Fixed in 9.82025-09-04
vulnerable: 4.20 ... 9.7 (70 versions)
pgAdmin <= 9.7 is affected by a Cross-Origin Opener Policy (COOP) vulnerability. This vulnerability allows an attacker to manipulate the OAuth flow, potentially leading to unauthorised account access, account takeover, data breaches, an…
- CVE-2026-1707HIGHCVSS 7.4EG 7.4✓ Fixed in 9.122026-02-05
vulnerable: 4.20 ... 9.9 (74 versions)
pgAdmin versions 9.11 are affected by a Restore restriction bypass via key disclosure vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. An attacker with access to the pgAdmin web in…
- CVE-2026-7813CRITICALCVSS 9.9EG 9.9✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
Authorization vulnerability in pgAdmin 4 server mode affecting Server Groups, Servers, Shared Servers, Background Processes, and Debugger modules. Multiple endpoints fetched user-owned objects without filtering by the requesting user's id…
- CVE-2026-7814MEDIUMCVSS 4.8EG 4.8✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
Stored cross-site scripting (XSS) vulnerability in pgAdmin 4 Browser Tree and Explain Visualizer modules. User-controlled PostgreSQL object names (database, schema, table, column, etc.) were assigned to DOM elements via innerHTML, allowin…
- CVE-2026-7815HIGHCVSS 8.8EG 8.8✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
SQL injection vulnerability in pgAdmin 4 Maintenance Tool. Four user-supplied JSON fields (buffer_usage_limit, vacuum_parallel, vacuum_index_cleanup, reindex_tablespace) were concatenated directly into the rendered VACUUM/ANALYZE/REINDEX …
- CVE-2026-7816HIGHCVSS 8.8EG 8.8✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
OS command injection (CWE-78) vulnerability in pgAdmin 4 Import/Export query export. User-supplied input was interpolated directly into a psql \copy metacommand template without sanitization. An authenticated user could inject ") TO PROGR…
- CVE-2026-7817MEDIUMCVSS 6.5EG 6.5✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
Local file inclusion (LFI) and server-side request forgery (SSRF) vulnerabilities in pgAdmin 4 LLM API configuration endpoints. User-supplied api_key_file and api_url preferences were passed to the LLM provider clients without validation.…
- CVE-2026-7818HIGHCVSS 7.0EG 7.0✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
Deserialization of untrusted data (CWE-502) in pgAdmin 4 FileBackedSessionManager. The session manager performed unsafe deserialization of session-file contents (using Python's standard object-serialization module) before performing any H…
- CVE-2026-7819HIGHCVSS 8.1EG 8.1✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
Symbolic-link path traversal (CWE-61, CWE-22) in pgAdmin 4 File Manager. check_access_permission used os.path.abspath, which resolves '..' but does not resolve symbolic links, while the subsequent kernel write follows symlinks. An authent…
- CVE-2026-7820MEDIUMCVSS 6.5EG 6.5✓ Fixed in 9.152026-05-11
vulnerable: 4.20 ... 9.9 (77 versions)
Improper restriction of excessive authentication attempts (CWE-307) in pgAdmin 4. pgAdmin enforces MAX_LOGIN_ATTEMPTS only inside its custom /authenticate/login view. Flask-Security's default /login view, which is registered automatically…
Check whether pgadmin4 is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for pgadmin4 CVEs against the assets you own.
Start Free Scan →