Package impact
PyPI / pgadmin4
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-7816 | high | 8.8 | 8.8 | 24d ago | pgAdmin 4: OS command injection vulnerability in Import/Export query export | |||
| CVE-2026-7815 | high | 8.8 | 8.8 | 24d ago | SQL injection vulnerability in pgAdmin 4 Maintenance Tool | |||
| CVE-2026-7819 | high | 8.1 | 8.1 | 24d ago | pgAdmin 4 File Manager has symbolic-link path traversal | |||
| CVE-2026-7818 | high | 7.8 | 7.8 | 24d ago | pgAdmin 4 has deserialization of untrusted data in its FileBackedSessionManager | |||
| CVE-2026-7820 | medium | 6.5 | 6.5 | 24d ago | pgAdmin 4: Improper restriction of excessive authentication attempts | |||
| CVE-2026-7817 | medium | 6.5 | 6.5 | 24d ago | pgAdmin 4 contains local file inclusion (LFI) and server-side request forgery (SSRF) vulnerabilities | |||
| CVE-2026-7814 | medium | 4.8 | 4.8 | 24d ago | pgAdmin 4: Stored cross-site scripting (XSS) vulnerability in Browser Tree and Explain Visualizer modules |