vulnerability

Ubuntu: (CVE-2016-9848): phpmyadmin vulnerability

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Dec 11, 2016

Added

Jun 26, 2025

Modified

Jul 28, 2025

Description

An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP information including values of HttpOnly cookies. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

Solution

no-fix-ubuntu-package

References

CVE-2016-9848
https://attackerkb.com/topics/CVE-2016-9848
https://www.cve.org/CVERecord?id=CVE-2016-9848
https://www.phpmyadmin.net/security/PMASA-2016-59/

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report