Описание
An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to bypass the logout timeout. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| phpmyadmin | fixed | 4:4.6.5.1-1 | package | |
| phpmyadmin | not-affected | jessie | package | |
| phpmyadmin | not-affected | wheezy | package |
Примечания
https://www.phpmyadmin.net/security/PMASA-2016-62/
EPSS
Процентиль: 47%
0.00241
Низкий
Связанные уязвимости
CVSS3: 5.3
ubuntu
около 9 лет назад
An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to bypass the logout timeout. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected.
CVSS3: 5.3
nvd
около 9 лет назад
An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to bypass the logout timeout. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected.
EPSS
Процентиль: 47%
0.00241
Низкий