phpmyadmin

272 tracked vulnerabilities.

CVE-2016-9855 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Sensitive Information Exposure via Export Timeout Error
Dec 11, 2016
CVSS 5.3
EPSS 0.01
CVE-2016-9854 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Information Exposure via Error Message
Dec 11, 2016
CVSS 5.3
EPSS 0.01
CVE-2016-9853 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Sensitive Information Exposure via Error Message
Dec 11, 2016
CVSS 5.3
EPSS 0.01
CVE-2016-9852 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Path Disclosure via Export Timeout Error
Dec 11, 2016
CVSS 5.3
EPSS 0.01
CVE-2016-9851 MEDIUM
phpMyAdmin 4.6.x < 4.6.5 and 4.4.x < 4.4.15.9 - Session Timeout Bypass
Dec 11, 2016
CVSS 5.3
EPSS 0.00
CVE-2016-9850 MEDIUM
phpMyAdmin 4.0.x < 4.0.10.18, 4.4.x < 4.4.15.9, 4.6.x < 4.6.5 - Username Enumeration via Timing Attack
Dec 11, 2016
CVSS 5.3
EPSS 0.01
CVE-2016-9849 CRITICAL
phpMyAdmin < 4.6.5, < 4.4.15.9, < 4.0.10.18 - Authentication Bypass via Null Byte in Username
Dec 11, 2016
CVSS 9.8
EPSS 0.00
CVE-2016-9848 MEDIUM
phpMyAdmin < 4.6.5, < 4.4.15.9, < 4.0.10.18 - Unauthenticated Sensitive Information Exposure via phpinfo.php
Dec 11, 2016
CVSS 5.3
EPSS 0.00
CVE-2016-9847 MEDIUM
phpMyAdmin 4.0.x < 4.0.10.18, 4.4.x < 4.4.15.9, 4.6.x < 4.6.5 - Weak Cookie Encryption Key Generation
Dec 11, 2016
CVSS 5.3
EPSS 0.00
CVE-2016-6633 HIGH
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - RCE
Dec 11, 2016
CVSS 8.1
EPSS 0.02
CVE-2016-6632 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
Dec 11, 2016
CVSS 5.9
EPSS 0.01
CVE-2016-6631 HIGH
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - RCE
Dec 11, 2016
CVSS 7.5
EPSS 0.04
CVE-2016-6630 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - DoS
Dec 11, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-6629 CRITICAL
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Auth Bypass
Dec 11, 2016
CVSS 9.8
EPSS 0.00
CVE-2016-6628 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
Dec 11, 2016
CVSS 6.3
EPSS 0.00
CVE-2016-6627 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
Dec 11, 2016
CVSS 5.3
EPSS 0.00
CVE-2016-6626 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Open Redirect
Dec 11, 2016
CVSS 5.4
EPSS 0.00
CVE-2016-6625 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
Dec 11, 2016
CVSS 4.3
EPSS 0.00
CVE-2016-6624 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Info Disclosure
Dec 11, 2016
CVSS 5.9
EPSS 0.00
CVE-2016-6623 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - DoS
Dec 11, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-6622 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - DoS
Dec 11, 2016
CVSS 5.9
EPSS 0.01
CVE-2016-6620 CRITICAL
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - Code Injection
Dec 11, 2016
CVSS 9.8
EPSS 0.02
CVE-2016-6619 HIGH
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - SQL Injection
Dec 11, 2016
CVSS 8.8
EPSS 0.00
CVE-2016-6618 MEDIUM
phpMyAdmin <4.6.4, <4.4.15.8, <4.0.10.17 - DoS
Dec 11, 2016
CVSS 6.5
EPSS 0.01
CVE-2016-6617 HIGH
phpMyAdmin 4.6.x < 4.6.4 - SQL Injection via Export Functionality
Dec 11, 2016
CVSS 8.1
EPSS 0.00
Products
phpmyadmin 271 phpMyAdmin 2
Quick Filters
Critical CVEs With Exploits In CISA KEV