Description

An issue was discovered in phpMyAdmin involving the %u username replacement functionality of the SaveDir and UploadDir features. When the username substitution is configured, a specially-crafted user name can be used to circumvent restrictions to traverse the file system. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Remediation

References

CVE-2016-6614

Related Vulnerabilities

WordPress Plugin WP Table Builder-WordPress Table Cross-Site Scripting (1.3.9)

Apache HTTP Server CVE-2012-0883 Vulnerability (CVE-2012-0883)

PHP Numeric Errors Vulnerability (CVE-2015-4022)

Drupal 7PK - Security Features Vulnerability (CVE-2016-3163)

Envoy Proxy Improper Encoding or Escaping of Output Vulnerability (CVE-2024-45808)

Severity

Medium

Classification

CVE-2016-6614 CWE-22 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities