Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2016-6616 - Vulnerability Database
phpMyAdmin

phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability - CVE-2016-6616

High
Reference: CVE-2016-6616
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-6616
Title: phpMyAdmin Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Overview:

An issue was discovered in phpMyAdmin. In the quotUser groupquot and quotDesignerquot features a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4) and 4.4.x versions (prior to 4.4.15.8) are affected.