Lucene search
MitreCVELIST:CVE-2016-5097HistoryJul 05, 2016 - 1:00 a.m.
CVE-2016-5097
2016-07-0501:00:00
mitre
www.cve.org
3
phpMyAdmin before 4.6.2 places tokens in query strings and does not arrange for them to be stripped before external navigation, which allows remote attackers to obtain sensitive information by reading (1) HTTP requests or (2) server logs.
References
lists.opensuse.org/opensuse-updates/2016-06/msg00043.html
www.securitytracker.com/id/1035978
github.com/phpmyadmin/phpmyadmin/commit/11eb574242d2526107366d367ab5585fbe29578f
github.com/phpmyadmin/phpmyadmin/commit/59e56bd63a5e023b797d82eb272cd074e3b4bfd1
github.com/phpmyadmin/phpmyadmin/commit/5fc8020c5ba9cd2e38beb5dfe013faf2103cdf0f
github.com/phpmyadmin/phpmyadmin/commit/8326aaebe54083d9726e153abdd303a141fe5ad3
security.gentoo.org/glsa/201701-32
www.phpmyadmin.net/security/PMASA-2016-14
Related
cve
cve
CVE-2016-5097
2016-07-05 01:59:05
prion
prion
Code injection
2016-07-05 01:59:00
nvd
nvd
CVE-2016-5097
2016-07-05 01:59:05
nessus
nessus
Fedora 22 : phpMyAdmin (2016-cd05bd994a)
2016-07-14 00:00:00
Fedora 24 : phpMyAdmin (2016-e3240782ec)
2016-07-14 00:00:00
Fedora 23 : phpMyAdmin (2016-55261b6815)
2016-07-14 00:00:00
ubuntucve
ubuntucve
CVE-2016-5097
2016-07-05 00:00:00
phpmyadmin
phpmyadmin
Sensitive Data in URL GET Query Parameters
2016-05-25 00:00:00
debiancve
debiancve
CVE-2016-5097
2016-07-05 01:59:05
freebsd
freebsd
phpmyadmin -- XSS and sensitive data leakage
2016-05-25 00:00:00
openvas
openvas
phpMyAdmin Multiple Information Disclosure Vulnerabilities
2016-08-04 00:00:00
Fedora Update for phpMyAdmin FEDORA-2016-cd05bd994a
2016-06-08 00:00:00
Fedora Update for phpMyAdmin FEDORA-2016-55261b6815
2016-06-08 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: phpMyAdmin-4.6.2-1.fc23
2016-06-01 20:23:50
[SECURITY] Fedora 22 Update: phpMyAdmin-4.6.2-1.fc22
2016-06-05 02:52:00
[SECURITY] Fedora 24 Update: phpMyAdmin-4.6.2-1.fc24
2016-06-18 19:57:20
gentoo
gentoo
phpMyAdmin: Multiple vulnerabilities
2017-01-11 00:00:00