phpMyAdmin 7PK - Security Features Vulnerability - CVE-2016-6629 - Vulnerability Database

phpMyAdmin 7PK - Security Features Vulnerability - CVE-2016-6629

Critical

Reference: CVE-2016-6629

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-6629

Title: phpMyAdmin 7PK - Security Features Vulnerability

Overview:

An issue was discovered in phpMyAdmin involving the cfg39ArbitraryServerRegexp39 configuration directive. An attacker could reuse certain cookie values in a way of bypassing the servers defined by ArbitraryServerRegexp. All 4.6.x versions (prior to 4.6.4) 4.4.x versions (prior to 4.4.15.8) and 4.0.x versions (prior to 4.0.10.17) are affected.