Description

An issue was discovered in phpMyAdmin. An attacker can determine the phpMyAdmin host location through the file url.php. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Remediation

References

CVE-2016-6627

Related Vulnerabilities

WordPress Plugin Integration for Contact Form 7 HubSpot Cross-Site Scripting (1.1.9)

MySQL CVE-2020-14868 Vulnerability (CVE-2020-14868)

WordPress Improper Input Validation Vulnerability (CVE-2020-26596)

WordPress Plugin Post Views Count (Support caching plugins!) Cross-Site Scripting (3.0.2)

WordPress Plugin PDF Viewer Block for Gutenberg Cross-Site Scripting (1.0)

Severity

Medium

Classification

CVE-2016-6627 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities