SpirityCVE

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Phppgadmin	Phppgadmin

No data.

References

No reference.

History

Sun, 01 Feb 2026 13:15:00 +0000

Type	Values Removed	Values Added
Title	phpPgAdmin 7.13.0 - COPY FROM PROGRAM Command Execution
Metrics	ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Sun, 01 Feb 2026 12:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-78
References	https://github.com/phppgadmin/phppgadmin/releases https://www.exploit-db.com/exploits/49736 https://www.vulncheck.com/advisories/phppgadmin-copy-from-program-command-execution
Metrics	cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}` cvssV4_0 `{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X'}`

Sun, 01 Feb 2026 12:15:00 +0000

Type	Values Removed	Values Added
Description	phpPgAdmin 7.13.0 contains a remote command execution vulnerability that allows authenticated attackers to execute arbitrary system commands through SQL query manipulation. Attackers can create a custom table, upload a malicious .txt file, and use the COPY FROM PROGRAM command to execute operating system commands with the application's privileges.	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Metrics	cvssV4_0 `{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`	cvssV4_0 `{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X'}`

Fri, 23 Jan 2026 16:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Phppgadmin Phppgadmin phppgadmin
Vendors & Products		Phppgadmin Phppgadmin phppgadmin

Thu, 22 Jan 2026 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Wed, 21 Jan 2026 17:45:00 +0000

Type	Values Removed	Values Added
Description		phpPgAdmin 7.13.0 contains a remote command execution vulnerability that allows authenticated attackers to execute arbitrary system commands through SQL query manipulation. Attackers can create a custom table, upload a malicious .txt file, and use the COPY FROM PROGRAM command to execute operating system commands with the application's privileges.
Title		phpPgAdmin 7.13.0 - COPY FROM PROGRAM Command Execution
Weaknesses		CWE-78
References		https://github.com/phppgadmin/phppgadmin/releases https://www.exploit-db.com/exploits/49736 https://www.vulncheck.com/advisories/phppgadmin-copy-from-program-command-execution
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}` cvssV4_0 `{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}`

MITRE

Status: REJECTED

Assigner: VulnCheck

Published: 2026-01-21T17:27:37.681Z

Updated: 2026-02-01T12:09:57.186Z

Reserved: 2026-01-14T17:11:19.903Z

Link: CVE-2021-47853

Vulnrichment

Updated:

NVD

Status : Rejected

Published: 2026-01-21T18:16:14.800

Modified: 2026-02-01T12:15:53.110

Link: CVE-2021-47853

Redhat

No data.

Metrics