Description

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions (prior to 4.6.4) are affected.

Remediation

References

CVE-2016-6608

Related Vulnerabilities

WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.5)

MySQL CVE-2018-3074 Vulnerability (CVE-2018-3074)

WordPress Plugin Metform Elementor Contact Form Builder-Flexible and Design-Friendly Contact Form builder for WordPress Security Bypass (3.3.0)

WordPress Plugin Post SMTP-WP SMTP with Email Logs & Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP, Office 365, Brevo, Mailgun, Amazon SES, Postmark SQL Injection (2.9.3)

SharePoint CVE-2025-21344 Vulnerability (CVE-2025-21344)

Severity

Medium

Classification

CVE-2016-6608 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities