7.5

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2025-12764

GHSA ID

GHSA-cvf4-f829-762v

EPSS Score

CWE

CWE-90

Published

11/13/2025

Updated

11/13/2025

KEV Status

Technology

Python

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-12764

CVE-2025-12764: pgAdmin is affected by an LDAP injection vulnerability

pgAdmin <= 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amount of data DOS.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-12764

CVE-2025-12764:

7.5

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2025-12764

GHSA ID

GHSA-cvf4-f829-762v

EPSS Score

CWE

CWE-90

Published

11/13/2025

Updated

11/13/2025

KEV Status

Technology

Python

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
pgadmin4	pip	<= 9.9	9.10

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability lies in the pgadmin.authenticate.ldap.LDAP.search_ldap_user function, where user-provided usernames were incorporated into an LDAP search filter without proper sanitization. The patch addresses this by introducing the escape_filter_chars function to neutralize special characters in the username before it's used in the filter. This prevents attackers from injecting malicious LDAP queries. The commit message explicitly mentions fixing an LDAP injection vulnerability (CVE-2025-12764), and the code change directly corresponds to the vulnerability description.

Vulnerable functions

LDAP.search_ldap_user

web/pgadmin/authenticate/ldap.py

The `search_ldap_user` function in the `LDAP` class was vulnerable to LDAP injection. The username, which is taken from user input, was used directly in an LDAP search filter without proper escaping. This allowed an attacker to inject special LDAP characters and manipulate the search filter, leading to a denial of service.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

7.5

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-12764: pgAdmin is affected by an LDAP injection vulnerability

CVE-2025-12764:

7.5

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Technical Details

Basic Information

Basic Information

7.5

7.5

CVE-2025-12764: pgAdmin is affected by an LDAP injection vulnerability

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI