Description

An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Remediation

References

CVE-2016-6618

Related Vulnerabilities

WordPress Plugin Login With Ajax Security Bypass (3.1.2)

WordPress Plugin WordPress Social Stream Security Bypass (1.5.15)

WordPress Plugin bSuite Cross-Site Scripting (4.0.7)

Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-1468)

MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2005-0004)

Severity

Medium

Classification

CVE-2016-6618 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities