Debian Phpmyadmin vulnerabilities

CVE-2016-6620 [CRITICAL] CVE-2016-6620: phpmyadmin - An issue was discovered in phpMyAdmin. Some data is passed to the PHP unserializ... An issue was discovered in phpMyAdmin. Some data is passed to the PHP unserialize() function without verification that it's valid serialized data. The unserialization can result in code execution because of the interaction with object instantiation and autoloading. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prio

CVE-2016-6629 [CRITICAL] CVE-2016-6629: phpmyadmin - An issue was discovered in phpMyAdmin involving the $cfg['ArbitraryServerRegexp'... An issue was discovered in phpMyAdmin involving the $cfg['ArbitraryServerRegexp'] configuration directive. An attacker could reuse certain cookie values in a way of bypassing the servers defined by ArbitraryServerRegexp. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected. Scope: local bo

CVE-2016-9849 [CRITICAL] CVE-2016-9849: phpmyadmin - An issue was discovered in phpMyAdmin. It is possible to bypass AllowRoot restri... An issue was discovered in phpMyAdmin. It is possible to bypass AllowRoot restriction ($cfg['Servers'][$i]['AllowRoot']) and deny rules for username by using Null Byte in the username. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.5.1

CVE-2016-5734 [CRITICAL] CVE-2016-5734: phpmyadmin - phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3... phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not properly choose delimiters to prevent use of the preg_replace e (aka eval) modifier, which might allow remote attackers to execute arbitrary PHP code via a crafted string, as demonstrated by the table search-and-replace implementation. Scope: local bookworm: resolved (fixe

CVE-2016-5703 [CRITICAL] CVE-2016-5703: phpmyadmin - SQL injection vulnerability in libraries/central_columns.lib.php in phpMyAdmin 4... SQL injection vulnerability in libraries/central_columns.lib.php in phpMyAdmin 4.4.x before 4.4.15.7 and 4.6.x before 4.6.3 allows remote attackers to execute arbitrary SQL commands via a crafted database name that is mishandled in a central column query. Scope: local bookworm: resolved (fixed in 4:4.6.3-1) bullseye: resolved (fixed in 4:4.6.3-1) forky: resolve

CVE-2016-6617 [HIGH] CVE-2016-6617: phpmyadmin - An issue was discovered in phpMyAdmin. A specially crafted database and/or table... An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6.4) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.4+dfsg1-1) bullseye: resolved (fixed in 4:4.6.4+dfsg1-1) forky: resolved (fixed in 4:4.6.4+dfsg1-1) si

CVE-2016-5739 [HIGH] CVE-2016-5739: phpmyadmin - The Transformation implementation in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x be... The Transformation implementation in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not use the no-referrer Content Security Policy (CSP) protection mechanism, which makes it easier for remote attackers to conduct CSRF attacks by reading an authentication token in a Referer header, related to libraries/Header.php. Scope: local

CVE-2016-6616 [HIGH] CVE-2016-6616: phpmyadmin - An issue was discovered in phpMyAdmin. In the "User group" and "Designer" featur... An issue was discovered in phpMyAdmin. In the "User group" and "Designer" features, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4) and 4.4.x versions (prior to 4.4.15.8) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.4+dfsg1-1) bullseye: resolved (fixed in 4:4.6.4+dfsg1-1) forky

CVE-2016-1927 [HIGH] CVE-2016-1927: phpmyadmin - The suggestPassword function in js/functions.js in phpMyAdmin 4.0.x before 4.0.1... The suggestPassword function in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 relies on the Math.random JavaScript function, which makes it easier for remote attackers to guess passwords via a brute-force approach. Scope: local bookworm: resolved (fixed in 4:4.5.4-1) bullseye: resolved (fixed in 4:4.5.4-1) forky

CVE-2016-9864 [HIGH] CVE-2016-9864: phpmyadmin - An issue was discovered in phpMyAdmin. With a crafted username or a table name, ... An issue was discovered in phpMyAdmin. With a crafted username or a table name, it was possible to inject SQL statements in the tracking functionality that would run with the privileges of the control user. This gives read and write access to the tables of the configuration storage database, and if the control user has the necessary privileges, read access to some

CVE-2016-6621 [HIGH] CVE-2016-6621: phpmyadmin - The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.... The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors. Scope: local bookworm: resolved (fixed in 4:4.6.6-1) bullseye: resolved (fixed in 4:4.6.6-1) forky: resolved (fixed in 4:4.6.6-1) sid: resolved (fixed in 4:4.6.6-1) tr

CVE-2016-9862 [HIGH] CVE-2016-9862: phpmyadmin - An issue was discovered in phpMyAdmin. With a crafted login request it is possib... An issue was discovered in phpMyAdmin. With a crafted login request it is possible to inject BBCode in the login page. All 4.6.x versions (prior to 4.6.5) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.5.1-1) bullseye: resolved (fixed in 4:4.6.5.1-1) forky: resolved (fixed in 4:4.6.5.1-1) sid: resolved (fixed in 4:4.6.5.1-1) trixie: resolved (fixed i

CVE-2016-6619 [HIGH] CVE-2016-6619: phpmyadmin - An issue was discovered in phpMyAdmin. In the user interface preference feature,... An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.4+dfsg1-1) bullseye: resolv

CVE-2016-6606 [HIGH] CVE-2016-6606: phpmyadmin - An issue was discovered in cookie encryption in phpMyAdmin. The decryption of th... An issue was discovered in cookie encryption in phpMyAdmin. The decryption of the username/password is vulnerable to a padding oracle attack. This can allow an attacker who has access to a user's browser cookie file to decrypt the username and password. Furthermore, the same initialization vector (IV) is used to hash the username and password stored in the phpMyAdm

CVE-2016-6631 [HIGH] CVE-2016-6631: phpmyadmin - An issue was discovered in phpMyAdmin. A user can execute a remote code executio... An issue was discovered in phpMyAdmin. A user can execute a remote code execution attack against a server when phpMyAdmin is being run as a CGI application. Under certain server configurations, a user can pass a query string which is executed as a command-line argument by the file generator_plugin.sh. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.

CVE-2016-2041 [HIGH] CVE-2016-2041: phpmyadmin - libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.... libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 does not use a constant-time algorithm for comparing CSRF tokens, which makes it easier for remote attackers to bypass intended access restrictions by measuring time differences. Scope: local bookworm: resolved (fixed in 4:4.5.4-1) bullseye: resolved (fixed

CVE-2016-6611 [HIGH] CVE-2016-6611: phpmyadmin - An issue was discovered in phpMyAdmin. A specially crafted database and/or table... An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.4+dfsg1-1) bullseye: reso

CVE-2016-6609 [HIGH] CVE-2016-6609: phpmyadmin - An issue was discovered in phpMyAdmin. A specially crafted database name could b... An issue was discovered in phpMyAdmin. A specially crafted database name could be used to run arbitrary PHP commands through the array export feature. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.4+dfsg1-1) bullseye: resolved (fixed in 4

CVE-2016-5701 [MEDIUM] CVE-2016-5701: phpmyadmin - setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4.4.15.x bef... setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4.4.15.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to conduct BBCode injection attacks against HTTP sessions via a crafted URI. Scope: local bookworm: resolved (fixed in 4:4.6.3-1) bullseye: resolved (fixed in 4:4.6.3-1) forky: resolved (fixed in 4:4.6.3-1) sid: resolved (fi

CVE-2016-6623 [MEDIUM] CVE-2016-6623: phpmyadmin - An issue was discovered in phpMyAdmin. An authorized user can cause a denial-of-... An issue was discovered in phpMyAdmin. An authorized user can cause a denial-of-service (DoS) attack on a server by passing large values to a loop. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected. Scope: local bookworm: resolved (fixed in 4:4.6.4+dfsg1-1) bullseye: resolved (fixed in 4: