Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-9854

Опубликовано: 11 дек. 2016
Источник: ubuntu
Приоритет: low
CVSS2: 5
CVSS3: 5.3

Описание

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the json_decode issue.

РелизСтатусПримечание
artful

not-affected

4:4.6.5.1-1
bionic

not-affected

4:4.6.5.1-1
cosmic

not-affected

4:4.6.5.1-1
devel

not-affected

4:4.6.5.1-1
disco

not-affected

4:4.6.5.1-1
eoan

DNE

esm-apps/bionic

not-affected

4:4.6.5.1-1
esm-apps/focal

not-affected

4:4.6.5.1-1
esm-apps/jammy

not-affected

4:4.6.5.1-1
esm-apps/noble

not-affected

4:4.6.5.1-1

Показывать по

Ссылки на источники

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2016-9854

CVSS3: 5.3
nvd
больше 8 лет назад

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the json_decode issue.

debian логотип

CVE-2016-9854

CVSS3: 5.3
debian
больше 8 лет назад

An issue was discovered in phpMyAdmin. By calling some scripts that ar ...

github логотип

GHSA-wcjq-hpqg-qhvw

CVSS3: 5.3
github
около 3 лет назад

An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the json_decode issue.

5 Medium

CVSS2

5.3 Medium

CVSS3