Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2016-6611 - Vulnerability Database
phpMyAdmin

phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2016-6611

High
Reference: CVE-2016-6611
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-6611
Title: phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6.4) 4.4.x versions (prior to 4.4.15.8) and 4.0.x versions (prior to 4.0.10.17) are affected.