An issue was discovered in phpMyAdmin. Due to a bug in serialized string parsing, it was possible to bypass the protection offered by PMA_safeUnserialize() function. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Information
Published : 2016-12-10 19:00
Updated : 2018-07-07 18:29
NVD link : CVE-2016-9865
Mitre link : CVE-2016-9865
JSON object : View
Products Affected
phpmyadmin
- phpmyadmin