CVE-2025-12764 | pgAdmin up to 9.9 DC/LDAP Username ldap injection (Issue 9325)

Inserito da Angelo Barbosa | Nov 13, 2025 | CVE

A vulnerability labeled as problematic has been found in pgAdmin up to 9.9. This affects an unknown part of the component DC/LDAP. Executing manipulation of the argument Username can lead to ldap injection.

This vulnerability is handled as CVE-2025-12764. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2025-12764 | pgAdmin up to 9.9 DC/LDAP Username ldap injection (Issue 9325)

Post correlati

CVE-2025-0998 | Google Chrome 2024-12-31 V8 out-of-bounds

CVE-2024-12253 | Simple Ecommerce Shopping Cart Plugin up to 3.1.2 on WordPress Setting authorization

CVE-2024-25573 | Ping Identity PingFederate up to 11.2.10/11.3.9/12.0.6/12.1.4 Administrative Console cross site scripting

CVE-2024-20383 | Cisco Secure Email/Web Manager cross site scripting (cisco-sa-esa-sma-wsa-xss-bgG5WHOD)