CVE-2016-6609 in phpMyAdmininfo

Summary

An issue was discovered in phpMyAdmin. A specially crafted database name could be used to run arbitrary PHP commands through the array export feature. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

08/06/2016

Disclosure

12/10/2016

Moderation

VulDB entry created

Entries

VDB-94041 (1)

CPE

ready

CWE

CWE-77 (Confirmed)

CVSS

8.8

EPSS

0.00425

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6609
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6609
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6609/

◂ Previous Overview Next ▸