SQL Injection Vulnerability in phpMyAdmin Affects Multiple Versions
CVE-2016-6611

8.1HIGH

Key Information:

Vendor

PHPmyadmin

Vendor
CVE Published:
11 December 2016

What is CVE-2016-6611?

A vulnerability exists in phpMyAdmin where specially crafted database or table names can be exploited to conduct SQL injection attacks through the export functionality. This flaw impacts phpMyAdmin versions 4.6.x, 4.4.x, and 4.0.x prior to their respective patch releases. It is essential for users of affected versions to apply security updates promptly to safeguard their systems from potential exploitation.

References

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.