Lucene search
MitreCVE-2016-6626HistoryDec 11, 2016 - 2:59 a.m.
CVE-2016-6626
2016-12-1102:59:34
CWE-254
mitre
web.nvd.nist.gov
74
phpmyadmin
security
cve-2016-6626
web page redirection
vulnerability
nvd
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
AI Score
6.9
Confidence
High
EPSS
0.002
Percentile
51.6%
An issue was discovered in phpMyAdmin. An attacker could redirect a user to a malicious web page. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
Affected configurations
Node
phpmyadminphpmyadminMatch4.6.0
ORphpmyadminphpmyadminMatch4.6.1
ORphpmyadminphpmyadminMatch4.6.2
ORphpmyadminphpmyadminMatch4.6.3
Node
phpmyadminphpmyadminMatch4.0.0
ORphpmyadminphpmyadminMatch4.0.1
ORphpmyadminphpmyadminMatch4.0.2
ORphpmyadminphpmyadminMatch4.0.3
ORphpmyadminphpmyadminMatch4.0.4
ORphpmyadminphpmyadminMatch4.0.4.1
ORphpmyadminphpmyadminMatch4.0.4.2
ORphpmyadminphpmyadminMatch4.0.5
ORphpmyadminphpmyadminMatch4.0.6
ORphpmyadminphpmyadminMatch4.0.7
ORphpmyadminphpmyadminMatch4.0.8
ORphpmyadminphpmyadminMatch4.0.9
ORphpmyadminphpmyadminMatch4.0.10
ORphpmyadminphpmyadminMatch4.0.10.1
ORphpmyadminphpmyadminMatch4.0.10.2
ORphpmyadminphpmyadminMatch4.0.10.3
ORphpmyadminphpmyadminMatch4.0.10.4
ORphpmyadminphpmyadminMatch4.0.10.5
ORphpmyadminphpmyadminMatch4.0.10.6
ORphpmyadminphpmyadminMatch4.0.10.7
ORphpmyadminphpmyadminMatch4.0.10.8
ORphpmyadminphpmyadminMatch4.0.10.9
ORphpmyadminphpmyadminMatch4.0.10.10
ORphpmyadminphpmyadminMatch4.0.10.11
ORphpmyadminphpmyadminMatch4.0.10.12
ORphpmyadminphpmyadminMatch4.0.10.13
ORphpmyadminphpmyadminMatch4.0.10.14
ORphpmyadminphpmyadminMatch4.0.10.15
ORphpmyadminphpmyadminMatch4.0.10.16
Node
phpmyadminphpmyadminMatch4.4.0
ORphpmyadminphpmyadminMatch4.4.1
ORphpmyadminphpmyadminMatch4.4.1.1
ORphpmyadminphpmyadminMatch4.4.2
ORphpmyadminphpmyadminMatch4.4.3
ORphpmyadminphpmyadminMatch4.4.4
ORphpmyadminphpmyadminMatch4.4.5
ORphpmyadminphpmyadminMatch4.4.6
ORphpmyadminphpmyadminMatch4.4.6.1
ORphpmyadminphpmyadminMatch4.4.7
ORphpmyadminphpmyadminMatch4.4.8
ORphpmyadminphpmyadminMatch4.4.9
ORphpmyadminphpmyadminMatch4.4.10
ORphpmyadminphpmyadminMatch4.4.11
ORphpmyadminphpmyadminMatch4.4.12
ORphpmyadminphpmyadminMatch4.4.13
ORphpmyadminphpmyadminMatch4.4.13.1
ORphpmyadminphpmyadminMatch4.4.14
ORphpmyadminphpmyadminMatch4.4.14.1
ORphpmyadminphpmyadminMatch4.4.15
ORphpmyadminphpmyadminMatch4.4.15.1
ORphpmyadminphpmyadminMatch4.4.15.2
ORphpmyadminphpmyadminMatch4.4.15.3
ORphpmyadminphpmyadminMatch4.4.15.4
ORphpmyadminphpmyadminMatch4.4.15.5
ORphpmyadminphpmyadminMatch4.4.15.6
ORphpmyadminphpmyadminMatch4.4.15.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpmyadmin | phpmyadmin | 4.6.0 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.6.0:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.6.1 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.6.1:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.6.2 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.6.2:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.6.3 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.6.3:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.0.0 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.0.0:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.0.1 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.0.1:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.0.2 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.0.2:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.0.3 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.0.3:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.0.4 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.0.4:*:*:*:*:*:*:* |
| phpmyadmin | phpmyadmin | 4.0.4.1 | cpe:2.3:a:phpmyadmin:phpmyadmin:4.0.4.1:*:*:*:*:*:*:* |
Related
alpinelinux
alpinelinux
CVE-2016-6626
2016-12-11 02:59:34
debiancve
debiancve
CVE-2016-6626
2016-12-11 02:59:34
phpmyadmin
phpmyadmin
Bypass URL redirect protection
2016-07-24 00:00:00
nvd
nvd
CVE-2016-6626
2016-12-11 02:59:34
cvelist
cvelist
CVE-2016-6626
2016-12-11 02:00:00
ubuntucve
ubuntucve
CVE-2016-6626
2016-12-11 00:00:00
prion
prion
Code injection
2016-12-11 02:59:00
osv
osv
phpmyadmin - security update
2016-12-24 00:00:00
phpmyadmin - security update
2019-06-16 00:00:00
phpMyAdmin-4.6.5.2-1.1 on GA media
2024-06-15 00:00:00
nessus
nessus
Debian DLA-757-1 : phpmyadmin security update
2016-12-27 00:00:00
Debian DLA-1821-1 : phpmyadmin security update
2019-06-18 00:00:00
debian
debian
[SECURITY] [DLA 757-1] phpmyadmin security update
2016-12-24 22:29:29
[SECURITY] [DLA 1821-1] phpmyadmin security update
2019-06-17 20:41:59
openvas
openvas
Debian: Security Advisory (DLA-757-1)
2023-03-08 00:00:00
Debian: Security Advisory (DLA-1821-1)
2019-06-18 00:00:00
phpMyAdmin Multiple Security Vulnerabilities - 02 (Dec 2016) - Linux
2017-04-10 00:00:00
mageia
mageia
Updated phpmyadmin packages fix security vulnerability
2016-08-31 18:32:33
freebsd
freebsd
phpmyadmin -- multiple vulnerabilities
2016-08-17 00:00:00
suse
suse
Security update for phpMyAdmin (important)
2016-08-29 11:09:35
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2017-01-11 00:00:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
AI Score
6.9
Confidence
High
EPSS
0.002
Percentile
51.6%
Related for CVE-2016-6626