Description

An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Remediation

References

CVE-2016-6619

Related Vulnerabilities

MySQL CVE-2019-2580 Vulnerability (CVE-2019-2580)

WordPress Plugin Classified Listing Pro & Directory Cross-Site Scripting (2.0.19)

WordPress Plugin AdKlick Advertising Management Unspecified Vulnerability (1.1)

WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.17)

Internet Information Services Other Vulnerability (CVE-1999-1376)

Severity

High

Classification

CVE-2016-6619 CWE-138 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities