Description

An issue was discovered in phpMyAdmin. An authenticated user can trigger a denial-of-service (DoS) attack by entering a very long password at the change password dialog. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Remediation

References

CVE-2016-6630

Related Vulnerabilities

Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-39206)

WordPress Plugin Fast Secure Contact Form Cross-Site Scripting (4.0.37)

WordPress Plugin Master Slider-Responsive Touch Slider SQL Injection (2.5.1)

Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-10687)

WordPress Plugin Question Answer Multiple Cross-Site Scripting Vulnerabilities (1.2.30)

Severity

Medium

Classification

CVE-2016-6630 CWE-20 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities