DEBIAN-CVE-2016-6609
- Source
- https://security-tracker.debian.org/tracker/CVE-2016-6609
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2016-6609.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2016-6609
- Upstream
- Published
- 2016-12-11T02:59:14Z
- Modified
- 2025-09-30T03:54:40Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in phpMyAdmin. A specially crafted database name could be used to run arbitrary PHP commands through the array export feature. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
- References
Affected packages
Debian:11 / phpmyadmin
Package
- Name
- phpmyadmin
- Purl
- pkg:deb/debian/phpmyadmin?arch=source
Debian:12 / phpmyadmin
Package
- Name
- phpmyadmin
- Purl
- pkg:deb/debian/phpmyadmin?arch=source
Debian:13 / phpmyadmin
Package
- Name
- phpmyadmin
- Purl
- pkg:deb/debian/phpmyadmin?arch=source
Debian:14 / phpmyadmin
Package
- Name
- phpmyadmin
- Purl
- pkg:deb/debian/phpmyadmin?arch=source