Download
| Alert*
|
oval:org.secpod.oval:def:1901179
An issue was discovered in phpMyAdmin. With a crafted username or a table name, it was possible to inject SQL statements in the tracking functionality that would run with the privileges of the control user. This gives read and write access to the tables of the configuration storage database, and if ... oval:org.secpod.oval:def:1800617 CVE-2016-9847: Unsafe generation of blowfish secret; All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected Upgrade to phpMyAdmin* 4.6.5, 4.4.15.9*, 4.0.10.18, or newer or apply patch. Reference: CVE-2016-9848: phpinfo information leak value of sensitive cookies; All 4.6.x versions ... oval:org.secpod.oval:def:1800532 CVE-2016-9847: Unsafe generation of blowfish secret. All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected Upgrade to phpMyAdmin* 4.6.5, 4.4.15.9*, 4.0.10.18, or newer or apply patch. Reference: CVE-2016-9848: phpinfo information leak value of sensitive cookies. All 4.6.x versions ... oval:org.secpod.oval:def:1800357 CVE-2016-9847: Unsafe generation of blowfish secret All 4.6.x versions , 4.4.x versions , and 4.0.x versions are affected Upgrade to phpMyAdmin* 4.6.5, 4.4.15.9*, 4.0.10.18, or newer or apply patch. Reference CVE-2016-9848: phpinfo information leak value of sensitive cookies All 4.6.x versions , 4 ... |
