vulnerability

phpMyAdmin: Unspecified Security Vulnerability (CVE-2016-6633)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Dec 10, 2016	May 4, 2017	Apr 7, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Dec 10, 2016

Added

May 4, 2017

Modified

Apr 7, 2026

Description

An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigger a remote code execution attack against certain PHP installations that are running with the dbase extension. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Solution

phpmyadmin-upgrade-latest

References

CVE-2016-6633
https://attackerkb.com/topics/CVE-2016-6633
EUVD-EUVD-2022-4713
http://www.securityfocus.com/bid/92500
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-4713
https://security.gentoo.org/glsa/201701-32
https://www.phpmyadmin.net/security/PMASA-2016-56

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report