Phpmyadmin: >> Phpmyadmin >> 4.6.5 Security Vulnerabilities
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
CVSS Score
6.1
EPSS Score
0.002
Published
2017-07-17
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
CVSS Score
7.5
EPSS Score
0.011
Published
2017-07-17
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack through crafted cookie parameters
CVSS Score
6.1
EPSS Score
0.006
Published
2017-07-17
A weakness was discovered where an attacker can inject arbitrary values in to the browser cookies. This is a re-issue of an incomplete fix from PMASA-2016-18.
CVSS Score
7.5
EPSS Score
0.005
Published
2017-07-17
phpMyAdmin 4.0, 4.4 and 4.6 are vulnerable to a weakness where a user with appropriate permissions is able to connect to an arbitrary MySQL server
CVSS Score
8.8
EPSS Score
0.009
Published
2017-07-17
phpMyAdmin 4.0, 4.4., and 4.6 are vulnerable to a DOS attack in the replication status by using a specially crafted table name
CVSS Score
7.5
EPSS Score
0.013
Published
2017-07-17
The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors.
CVSS Score
8.6
EPSS Score
0.004
Published
2017-01-31
Page 3