CVE report

CVE-2022-23808medium

phpMyAdmin < 5.1.2 - Cross-Site Scripting

Events 7d

5

Distinct IPs

4

Severity

medium

CISA KEV

Not listed

Daily probe volume (last 7 days)

peak: 3
2026-06-27: 2 events06-272026-06-30: 3 events06-30

Downloads & integrations

Top sources probing for CVE-2022-23808

Top networks the attempts come from

Fingerprints of the clients exploiting this

The HTTP (JA4H) and TLS (JA4) fingerprints seen on these attempts. Click one to see the whole population that carries it.

Sample request paths observed

  • /gallery/zp-core/setup/index.php

URL patterns we match

An event counts toward CVE-2022-23808 if its URL path contains any of these substrings (case-insensitive).

  • · /setup/index.php
  • · /phpmyadmin/setup/index.php