Vulnerabilities > Pgadmin > Pgadmin 4 > 6.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-04 | CVE-2024-3116 | pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the validate binary path API. | 9.8 |
| 2023-09-22 | CVE-2023-5002 | A flaw was found in pgAdmin. | 8.8 |
| 2023-03-27 | CVE-2023-0241 | Path Traversal vulnerability in Pgadmin 4 pgAdmin 4 versions prior to v6.19 contains a directory traversal vulnerability. | 6.5 |
| 2023-01-17 | CVE-2023-22298 | Open Redirect vulnerability in multiple products Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL. | 6.1 |
| 2022-12-13 | CVE-2022-4223 | Missing Authorization vulnerability in multiple products The pgAdmin server includes an HTTP API that is intended to be used to validate the path a user selects to external PostgreSQL utilities such as pg_dump and pg_restore. | 8.8 |