vulnerability
FreeBSD: VID-6FE72178-B2E3-11E6-8B2A-6805CA0B3D42 (CVE-2016-4412): phpMyAdmin -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:H/Au:S/C:P/I:P/A:N) | Nov 25, 2016 | Nov 25, 2016 | May 7, 2019 |
Severity
4
CVSS
(AV:N/AC:H/Au:S/C:P/I:P/A:N)
Published
Nov 25, 2016
Added
Nov 25, 2016
Modified
May 7, 2019
Description
An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another malicious site. The attacker must sniff the user's valid phpMyAdmin token. All 4.0.x versions (prior to 4.0.10.16) are affected.
Solution
freebsd-upgrade-package-phpmyadmin
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.