CVE-2022-23807 is a vulnerability in phpMyAdmin
Published on January 22, 2022
An issue was discovered in phpMyAdmin 4.9 before 4.9.8 and 5.1 before 5.1.2. A valid user who is already authenticated to phpMyAdmin can manipulate their account to bypass two-factor authentication for future login instances.
Products Associated with CVE-2022-23807
Want to know whenever a new CVE is published for phpMyAdmin? stack.watch will email you.
Exploit Probability
EPSS
0.14%
Percentile
33.14%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.