exploitDog

CVE-2016-6628

Опубликовано: 11 дек. 2016

Источник: debian

Описание

An issue was discovered in phpMyAdmin. An attacker may be able to trigger a user to download a specially crafted malicious SVG file. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
phpmyadmin	fixed	4:4.6.4+dfsg1-1		package
phpmyadmin	not-affected		wheezy	package

Примечания

https://www.phpmyadmin.net/security/PMASA-2016-51/

Связанные уязвимости

CVE-2016-6628

CVSS3: 6.3

ubuntu

больше 8 лет назад

An issue was discovered in phpMyAdmin. An attacker may be able to trigger a user to download a specially crafted malicious SVG file. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

CVE-2016-6628

CVSS3: 6.3

nvd

больше 8 лет назад

An issue was discovered in phpMyAdmin. An attacker may be able to trigger a user to download a specially crafted malicious SVG file. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

GHSA-phhm-63xx-v9rr

CVSS3: 6.3

github

около 3 лет назад

phpMyAdmin Reflected File Download attack

openSUSE-SU-2016:2168-1

suse-cvrf

почти 9 лет назад

Security update for phpMyAdmin