2017-01-31 20:59:00 2018-07-08 03:29:01

The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE
Phpmyadmin Phpmyadmin 4.6.0 Alpha1 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.0 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.9 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.8 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.6 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.5 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.4 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.3 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.2 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15.1 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.15 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.14.1 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.13.1 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.13 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.12 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.11 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.10 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.9 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.8 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.7 (not an official CPE) Phpmyadmin Phpmyadmin 4.4.6.1 (not an official CPE) phpMyAdmin 4.4.6 phpMyAdmin 4.4.5 phpMyAdmin 4.4.4 phpMyAdmin 4.4.3 Phpmyadmin Phpmyadmin 4.4.2 (not an official CPE) phpMyAdmin 4.4.1.1 phpMyAdmin 4.4.1 phpMyAdmin 4.4.0 Phpmyadmin Phpmyadmin 4.0.10.18 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.0 Rc1 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.0 Rc2 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.1 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.2 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.4 (not an official CPE) Phpmyadmin Phpmyadmin 4.6.5 (not an official CPE)