Fedora 43 pgadmin4 Critical SQL Injection Remote Code Exec 2026-1545df20ad

fedora

May 21, 2026

Update to pgadmin4-9.15.

Summary

pgAdmin is the most popular and feature rich Open Source administration and development

platform for PostgreSQL, the most advanced Open Source database in the world.

Update Information:

Update to pgadmin4-9.15.

Topics Covered

security advisory SQL Injection fedora remote code execution file manager pgadmin4

Change Log

* Mon May 11 2026 Sandro Mani - 9.15-1 - Update to 9.15

References

[ 1 ] Bug #2476786 - CVE-2026-7819 pgadmin4: symbolic-link path traversal in File Manager allows arbitrary file write [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2476786 [ 2 ] Bug #2476787 - CVE-2026-7815 pgadmin4: SQL injection in maintenance tool option values leading to remote code execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2476787 [ 3 ] Bug #2476788 - CVE-2026-7817 pgadmin4: local file inclusion and server-side request forgery in LLM API configuration endpoints [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2476788 [ 4 ] Bug #2476789 - CVE-2026-7820 pgadmin4: account-lockout bypass via Flask-Security default /login view [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2476789 [ 5 ] Bug #2476790 - CVE-2026-7818 pgadmin4: unsafe deserialization in file-backed session manager leads to remote code execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2476790...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-1545df20ad' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: pgadmin4

Product: Fedora 43

Version: 9.15

Release: 1.fc43

URL: https://www.pgadmin.org/

Summary: Administration tool for PostgreSQL

Topics Covered

security advisory SQL Injection fedora remote code execution file manager pgadmin4

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 43 pgadmin4 Critical SQL Injection Remote Code Exec 2026-1545df20ad

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 43 pgadmin4 Critical SQL Injection Remote Code Exec 2026-1545df20ad

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!