| 0 |
| url |
VCID-19c4-dbx1-e3aj |
| vulnerability_id |
VCID-19c4-dbx1-e3aj |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5732 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.44979 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45063 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45112 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45083 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45061 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45118 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45069 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45067 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.451 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45077 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00224 |
| scoring_system |
epss |
| scoring_elements |
0.45024 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5732 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5732 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5732 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5732, GHSA-3q28-xfw3-2q35
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-19c4-dbx1-e3aj |
|
| 1 |
| url |
VCID-1dc8-kafr-3qd7 |
| vulnerability_id |
VCID-1dc8-kafr-3qd7 |
| summary |
Cross-site Scripting
An issue was discovered in phpMyAdmin. An attacker may be able to trigger a user to download a specially crafted malicious SVG file. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6628 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49225 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49155 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49186 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49214 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49165 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.4922 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49216 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49234 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49207 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49212 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49257 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49255 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6628 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6628, GHSA-phhm-63xx-v9rr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1dc8-kafr-3qd7 |
|
| 2 |
| url |
VCID-1mz5-3xe3-4fcy |
| vulnerability_id |
VCID-1mz5-3xe3-4fcy |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9863 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69654 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69539 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69552 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69567 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69546 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69596 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69613 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69635 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.6962 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69606 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69646 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9863 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9863, GHSA-qgrq-64g6-mmh6
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1mz5-3xe3-4fcy |
|
| 3 |
| url |
VCID-24e9-fnt7-jqdu |
| vulnerability_id |
VCID-24e9-fnt7-jqdu |
| summary |
Improper Input Validation
phpMyAdmin is vulnerable to a DoS attack in the replication status by using a specially crafted table name. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000018 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.7972 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79654 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79683 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.7969 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79711 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79695 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79688 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79717 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79639 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79646 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.01295 |
| scoring_system |
epss |
| scoring_elements |
0.79667 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000018 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-1000018, GHSA-47qr-f86f-3wm4
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-24e9-fnt7-jqdu |
|
| 4 |
| url |
VCID-27kp-82xd-cucw |
| vulnerability_id |
VCID-27kp-82xd-cucw |
| summary |
phpMyAdmin allows remote attackers to spoof content via the url parameter
The redirection feature in url.php in phpMyAdmin 4.4.x before 4.4.15.1 and 4.5.x before 4.5.1 allows remote attackers to spoof content via the url parameter. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-7873 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70212 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70119 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70131 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70146 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70123 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70171 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70187 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.7021 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70195 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70183 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70225 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00625 |
| scoring_system |
epss |
| scoring_elements |
0.70233 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-7873 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-7873, GHSA-5pmg-qh2c-7j24
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-27kp-82xd-cucw |
|
| 5 |
| url |
VCID-2wka-nyka-9fbz |
| vulnerability_id |
VCID-2wka-nyka-9fbz |
| summary |
An issue was discovered in phpMyAdmin 5.x before 5.2.2. An XSS vulnerability has been discovered for the Insert tab. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-24529 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39526 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39609 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39622 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39645 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39562 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39616 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39631 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.3964 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39604 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39588 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.0018 |
| scoring_system |
epss |
| scoring_elements |
0.39638 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-24529 |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-24529
|
| risk_score |
2.2 |
| exploitability |
0.5 |
| weighted_severity |
4.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2wka-nyka-9fbz |
|
| 6 |
| url |
VCID-2y3v-jnph-hfh4 |
| vulnerability_id |
VCID-2y3v-jnph-hfh4 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, allowing
remote attackers to conduct XSS. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-26935 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.99675 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.9967 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.99669 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.99667 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.99673 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.99672 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.91523 |
| scoring_system |
epss |
| scoring_elements |
0.99671 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-26935 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-26935, GHSA-7ff4-cv53-4cjq
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2y3v-jnph-hfh4 |
|
| 7 |
| url |
VCID-3eyf-ggxd-f7ga |
| vulnerability_id |
VCID-3eyf-ggxd-f7ga |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5099 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65757 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65743 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65623 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65672 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65702 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65668 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65719 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65731 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65752 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65738 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65709 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5099 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5099
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3eyf-ggxd-f7ga |
|
| 8 |
| url |
VCID-3yp5-vqej-r7hh |
| vulnerability_id |
VCID-3yp5-vqej-r7hh |
| summary |
Cross-site Scripting
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin allow remote authenticated users to inject arbitrary web script or HTML. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2040 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65695 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65697 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65714 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.657 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65581 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65629 |
| published_at |
2026-04-02T12:55:00Z |
|
| 6 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65659 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65625 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65677 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65689 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65709 |
| published_at |
2026-04-11T12:55:00Z |
|
| 11 |
| value |
0.00493 |
| scoring_system |
epss |
| scoring_elements |
0.65665 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2040 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2040 |
| reference_id |
CVE-2016-2040 |
| reference_type |
|
| scores |
| 0 |
| value |
3.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:S/C:N/I:P/A:N |
|
| 1 |
| value |
5.4 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2040 |
|
| 74 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2040, GHSA-pw34-qf6c-84fc
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3yp5-vqej-r7hh |
|
| 9 |
| url |
VCID-41mv-6vqr-sua6 |
| vulnerability_id |
VCID-41mv-6vqr-sua6 |
| summary |
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
SQL Injection vulnerability in function getTableCreationQuery in CreateAddField.php in phpMyAdmin 5.x before 5.2.0 via the tbl_storage_engine or tbl_collation parameters to tbl_create.php. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-22452 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87129 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87058 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87069 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87088 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87081 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87101 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87109 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87122 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87117 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87112 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87128 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.03245 |
| scoring_system |
epss |
| scoring_elements |
0.87132 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-22452 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
| reference_url |
http://phpmyadmin.com |
| reference_id |
phpmyadmin.com |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track* |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-04-01T14:07:49Z/ |
|
|
| url |
http://phpmyadmin.com |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-22452, GHSA-prcg-mc23-hgjh
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-41mv-6vqr-sua6 |
|
| 10 |
| url |
VCID-4awg-qnjf-4ua5 |
| vulnerability_id |
VCID-4awg-qnjf-4ua5 |
| summary |
Improper Input Validation
A weakness was discovered where an attacker can inject arbitrary values in to the browser cookies. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000016 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65507 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65486 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65497 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65516 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65503 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65475 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65511 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65523 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65392 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65441 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65468 |
| published_at |
2026-04-04T12:55:00Z |
|
| 11 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65433 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000016 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-1000016, GHSA-j2cq-h6v2-f875
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4awg-qnjf-4ua5 |
|
| 11 |
| url |
VCID-4szd-esqn-93aq |
| vulnerability_id |
VCID-4szd-esqn-93aq |
| summary |
Exposure of Sensitive Information to an Unauthorized Actor
An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the fopen wrapper issue. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9853 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74927 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74851 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74853 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74881 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74854 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74887 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.749 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74924 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74902 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74892 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74929 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00851 |
| scoring_system |
epss |
| scoring_elements |
0.74936 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9853 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9853, GHSA-rmmf-5xhh-gg27
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4szd-esqn-93aq |
|
| 12 |
| url |
VCID-5657-kcyh-7bc2 |
| vulnerability_id |
VCID-5657-kcyh-7bc2 |
| summary |
phpMyAdmin SQL injection in user accounts page
In phpMyAdmin 4 before 4.9.4 and 5 before 5.0.1, SQL injection exists in the user accounts page. A malicious user could inject custom SQL in place of their own username when creating queries to this page. An attacker must have a valid MySQL account to access the server. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-5504 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.22375 |
| scoring_system |
epss |
| scoring_elements |
0.95843 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.22375 |
| scoring_system |
epss |
| scoring_elements |
0.95834 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.22375 |
| scoring_system |
epss |
| scoring_elements |
0.9584 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95916 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95908 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95945 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95942 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95939 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95937 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95928 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.23238 |
| scoring_system |
epss |
| scoring_elements |
0.95924 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-5504 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-5504, GHSA-fgj8-93xx-f6g6
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5657-kcyh-7bc2 |
|
| 13 |
| url |
VCID-5cdg-4z32-syfp |
| vulnerability_id |
VCID-5cdg-4z32-syfp |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6617 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.5911 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59184 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59208 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59172 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59224 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59237 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59257 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59239 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.5922 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59262 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00376 |
| scoring_system |
epss |
| scoring_elements |
0.59244 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6617 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6617
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5cdg-4z32-syfp |
|
| 14 |
| url |
VCID-5mda-fksy-bqb2 |
| vulnerability_id |
VCID-5mda-fksy-bqb2 |
| summary |
Cross-site Scripting
An issue was discovered in phpMyAdmin. XSS is possible because of a weakness in a regular expression used in some JavaScript processing. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9857 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61754 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61807 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61824 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61819 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61777 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61797 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.6181 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61789 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61651 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61725 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61773 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9857 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9857, GHSA-hmmx-wxh4-9w8w
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5mda-fksy-bqb2 |
|
| 15 |
| url |
VCID-63cb-2hqp-3ug8 |
| vulnerability_id |
VCID-63cb-2hqp-3ug8 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9850 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68352 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68372 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68391 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68368 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68419 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68436 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68462 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.6845 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68417 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68455 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68469 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00565 |
| scoring_system |
epss |
| scoring_elements |
0.68446 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9850 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9850
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-63cb-2hqp-3ug8 |
|
| 16 |
| url |
VCID-64sy-unts-juf3 |
| vulnerability_id |
VCID-64sy-unts-juf3 |
| summary |
Information Exposure
An issue was discovered in phpMyAdmin. An attacker can determine whether a user is logged in to phpMyAdmin. The user session, username, and password are not compromised by this vulnerability. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6625 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50974 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50851 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50909 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50935 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50892 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50949 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50947 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50989 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50967 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50951 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50988 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00275 |
| scoring_system |
epss |
| scoring_elements |
0.50995 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6625 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6625, GHSA-r643-7xfg-ppc5
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-64sy-unts-juf3 |
|
| 17 |
| url |
VCID-6qn6-3v4w-pqhw |
| vulnerability_id |
VCID-6qn6-3v4w-pqhw |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6606 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49159 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.4919 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49218 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49169 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49224 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.4922 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49238 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49211 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49216 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49262 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49259 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00258 |
| scoring_system |
epss |
| scoring_elements |
0.49229 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6606 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6606
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6qn6-3v4w-pqhw |
|
| 18 |
| url |
VCID-76a7-h2mq-gkfu |
| vulnerability_id |
VCID-76a7-h2mq-gkfu |
| summary |
security update |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-3902 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44253 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44323 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44345 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44282 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44334 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44338 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44356 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44324 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44379 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.4437 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.443 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-3902 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-3902
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-76a7-h2mq-gkfu |
|
| 19 |
| url |
VCID-7ga4-rjej-s3h1 |
| vulnerability_id |
VCID-7ga4-rjej-s3h1 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9859 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70411 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70425 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70442 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.7042 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70466 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70481 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70505 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.7049 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70476 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70518 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70526 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70506 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9859 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9859
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7ga4-rjej-s3h1 |
|
| 20 |
| url |
VCID-7h9b-a8dp-57hp |
| vulnerability_id |
VCID-7h9b-a8dp-57hp |
| summary |
Cross-site Scripting
phpMyAdmin is vulnerable to a CSS injection attack through crafted cookie parameters. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000015 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68119 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68196 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68214 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68202 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68164 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68197 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68211 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68186 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68101 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68124 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.6817 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00557 |
| scoring_system |
epss |
| scoring_elements |
0.68142 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000015 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-1000015, GHSA-3fgq-cmr4-97rr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7h9b-a8dp-57hp |
|
| 21 |
| url |
VCID-7n1n-uj91-8ugg |
| vulnerability_id |
VCID-7n1n-uj91-8ugg |
| summary |
phpMyAdmin server-side request forgery (SSRF)
The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6621 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59883 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59966 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.5998 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59974 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59934 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59953 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59968 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59947 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59811 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59888 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59933 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00389 |
| scoring_system |
epss |
| scoring_elements |
0.59913 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6621 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6621, GHSA-44vv-mm86-7cg6
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7n1n-uj91-8ugg |
|
| 22 |
| url |
VCID-81mz-gdhq-r7fm |
| vulnerability_id |
VCID-81mz-gdhq-r7fm |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5704 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51114 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.5118 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51201 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51096 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51138 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51194 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51156 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51171 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51193 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51148 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51152 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00277 |
| scoring_system |
epss |
| scoring_elements |
0.51061 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5704 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5704 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5704 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5704, GHSA-gcvp-cwgw-wx8j
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-81mz-gdhq-r7fm |
|
| 23 |
| url |
VCID-8fu3-wm7d-qkeu |
| vulnerability_id |
VCID-8fu3-wm7d-qkeu |
| summary |
Incomplete Cleanup
An issue was discovered in phpMyAdmin where, under certain conditions, phpMyAdmin may not delete temporary files during the import of ESRI files. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6632 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68518 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68424 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68443 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68463 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68439 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68489 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68506 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68532 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.6852 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68488 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.68527 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00567 |
| scoring_system |
epss |
| scoring_elements |
0.6854 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6632 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6632, GHSA-426q-975p-w5cr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8fu3-wm7d-qkeu |
|
| 24 |
| url |
VCID-8xac-hgvs-ykgn |
| vulnerability_id |
VCID-8xac-hgvs-ykgn |
| summary |
Incomplete List of Disallowed Inputs
An issue was discovered in phpMyAdmin. Due to the limitation in URL matching, it was possible to bypass the URL white-list protection. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9861 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47891 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47821 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47859 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.4788 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47829 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47882 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47878 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47902 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47879 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47889 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47943 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00246 |
| scoring_system |
epss |
| scoring_elements |
0.47937 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9861 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9861, GHSA-r326-mp8g-6xfc
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8xac-hgvs-ykgn |
|
| 25 |
| url |
VCID-95rw-mj5a-63cb |
| vulnerability_id |
VCID-95rw-mj5a-63cb |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6630 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72266 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72272 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72292 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72268 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72306 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72319 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72341 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72325 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72311 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72353 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.72362 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00713 |
| scoring_system |
epss |
| scoring_elements |
0.7235 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6630 |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6630
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-95rw-mj5a-63cb |
|
| 26 |
| url |
VCID-986a-3m4g-83ge |
| vulnerability_id |
VCID-986a-3m4g-83ge |
| summary |
Cross-Site Request Forgery (CSRF)
By deceiving a user into clicking on a crafted URL, it is possible to perform harmful SQL operations such as renaming databases, creating new `tables/routines`, deleting designer pages, `adding/deleting` users, updating user passwords, killing SQL processes. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-19969 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.63934 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.64006 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.64017 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.64005 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.6397 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.64 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.64014 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.64002 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.63888 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.63947 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.63984 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00458 |
| scoring_system |
epss |
| scoring_elements |
0.63974 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-19969 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-19969, GHSA-xwf2-53mc-r8hx
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-986a-3m4g-83ge |
|
| 27 |
| url |
VCID-9t2s-etzf-t3d2 |
| vulnerability_id |
VCID-9t2s-etzf-t3d2 |
| summary |
Command Injection
An issue was discovered in phpMyAdmin. A specially crafted database name could be used to run arbitrary PHP commands through the array export feature. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6609 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62256 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62108 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62169 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62199 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62166 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62216 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62233 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62252 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62241 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.6222 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62265 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00425 |
| scoring_system |
epss |
| scoring_elements |
0.62272 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6609 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6609, GHSA-wpww-hx7x-xfjh
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9t2s-etzf-t3d2 |
|
| 28 |
| url |
VCID-9xxd-uwwt-57ba |
| vulnerability_id |
VCID-9xxd-uwwt-57ba |
| summary |
Cross-site Scripting
An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9856 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61754 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61807 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61824 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61819 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61777 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61797 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.6181 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61789 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61651 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61725 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.00418 |
| scoring_system |
epss |
| scoring_elements |
0.61773 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9856 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9856, GHSA-j8mx-x32r-5rf4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9xxd-uwwt-57ba |
|
| 29 |
| url |
VCID-a1h3-y1fe-7fe2 |
| vulnerability_id |
VCID-a1h3-y1fe-7fe2 |
| summary |
phpMyAdmin vulnerable to Cross-site Scripting
setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4.4.15.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to conduct BBCode injection attacks against HTTP sessions via a crafted URI. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5701 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.63996 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64052 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64065 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64023 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.63937 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64053 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64018 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64048 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64062 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.6405 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.64033 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00459 |
| scoring_system |
epss |
| scoring_elements |
0.63983 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5701 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
|
| 77 |
|
| 78 |
|
| 79 |
|
| 80 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
|
| 88 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5701 |
| reference_id |
CVE-2016-5701 |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5701 |
|
| 89 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5701, GHSA-rh74-5835-jpxp
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a1h3-y1fe-7fe2 |
|
| 30 |
| url |
VCID-a286-32jj-eubk |
| vulnerability_id |
VCID-a286-32jj-eubk |
| summary |
Regular Expression Denial of Service in jquery-validation
The GitHub Security Lab team has identified potential security vulnerabilities in jquery.validation.
The project contains one or more regular expressions that are vulnerable to ReDoS (Regular Expression Denial of Service)
This issue was discovered and reported by GitHub team member @erik-krogh (Erik Krogh Kristensen). |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-21252 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.72032 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.72047 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.72039 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.71951 |
| published_at |
2026-04-01T12:55:00Z |
|
| 4 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.72014 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.7203 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.72006 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.71993 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.71955 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.71979 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.71959 |
| published_at |
2026-04-02T12:55:00Z |
|
| 11 |
| value |
0.007 |
| scoring_system |
epss |
| scoring_elements |
0.71998 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-21252 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-21252, GHSA-jxwx-85vp-gvwm
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a286-32jj-eubk |
|
| 31 |
| url |
VCID-araw-4wdy-hqcz |
| vulnerability_id |
VCID-araw-4wdy-hqcz |
| summary |
phpMyAdmin XSS when checking tables
An issue was discovered in phpMyAdmin 5.x before 5.2.2. An XSS vulnerability has been discovered for the check tables feature. A crafted table or database name could be used for XSS. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-24530 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41553 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41472 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41541 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41528 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41542 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41569 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41495 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41545 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41575 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41547 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41573 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-24530 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-24530, GHSA-222v-cx2c-q2f5
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-araw-4wdy-hqcz |
|
| 32 |
| url |
VCID-b4xu-wcz2-9fdh |
| vulnerability_id |
VCID-b4xu-wcz2-9fdh |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6631 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87666 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87676 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87688 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.8769 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87711 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87717 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87729 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87722 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.8772 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87734 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.03567 |
| scoring_system |
epss |
| scoring_elements |
0.87731 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6631 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6631
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b4xu-wcz2-9fdh |
|
| 33 |
| url |
VCID-b5bf-6u8e-byh8 |
| vulnerability_id |
VCID-b5bf-6u8e-byh8 |
| summary |
phpMyAdmin Denial Of Service (DOS) attack
js/get_scripts.js.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to cause a denial of service via a large array in the scripts parameter. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5706 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86073 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.85994 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86005 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86022 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86041 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.8605 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86065 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86062 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86058 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.86075 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.02778 |
| scoring_system |
epss |
| scoring_elements |
0.8608 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5706 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
|
| 77 |
|
| 78 |
|
| 79 |
|
| 80 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5706 |
| reference_id |
CVE-2016-5706 |
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:N/I:N/A:P |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 2 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5706 |
|
| 88 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5706, GHSA-9rmm-8fp4-26hv
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b5bf-6u8e-byh8 |
|
| 34 |
| url |
VCID-b5d2-5bfb-bbgz |
| vulnerability_id |
VCID-b5d2-5bfb-bbgz |
| summary |
Server-Side Request Forgery (SSRF)
phpMyAdmin is vulnerable to a weakness where a user with appropriate permissions is able to connect to an arbitrary MySQL server. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000017 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75913 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75979 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75994 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75992 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75954 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75961 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75984 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.7596 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75898 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75902 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75946 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.0092 |
| scoring_system |
epss |
| scoring_elements |
0.75934 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000017 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-1000017, GHSA-99xj-xqc9-98hr
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b5d2-5bfb-bbgz |
|
| 35 |
| url |
VCID-bbmt-dnp7-w3hr |
| vulnerability_id |
VCID-bbmt-dnp7-w3hr |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9852 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.65931 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.65973 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66003 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.65968 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66019 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66032 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66051 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66038 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66008 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66044 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66057 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66046 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9852 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9852
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bbmt-dnp7-w3hr |
|
| 36 |
| url |
VCID-bcmm-z26p-rkfp |
| vulnerability_id |
VCID-bcmm-z26p-rkfp |
| summary |
Improper Input Validation
An issue was discovered in phpMyAdmin. An unauthenticated user can execute a denial of service attack when phpMyAdmin is running with `$cfg['AllowArbitraryServer']=true`. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9860 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77197 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77104 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.7711 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.7714 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77122 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77155 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77163 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77191 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.7717 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77165 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77206 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77207 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9860 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9860, GHSA-3hw5-fffc-qrg4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bcmm-z26p-rkfp |
|
| 37 |
| url |
VCID-br1c-5bzf-ufeu |
| vulnerability_id |
VCID-br1c-5bzf-ufeu |
| summary |
SQL Injection
An issue was discovered in phpMyAdmin. A vulnerability was reported where a specially crafted username can be used to trigger a SQL injection attack through the designer feature. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-6798 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67578 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67474 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.6751 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67532 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67562 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67575 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67598 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67584 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67551 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67587 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00538 |
| scoring_system |
epss |
| scoring_elements |
0.67599 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-6798 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2019-6798 |
| reference_id |
CVE-2019-6798 |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
9.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2019-6798 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-6798, GHSA-f732-fxh6-g4qj
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-br1c-5bzf-ufeu |
|
| 38 |
| url |
VCID-but8-t37e-kfdb |
| vulnerability_id |
VCID-but8-t37e-kfdb |
| summary |
phpMyAdmin: Multiple full path disclosure vulnerabilities (PMASA-2016-6) |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2042 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68826 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68848 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68731 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.6875 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.6877 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68748 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.688 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68819 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68841 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68827 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68797 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00577 |
| scoring_system |
epss |
| scoring_elements |
0.68838 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2042 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2042
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-but8-t37e-kfdb |
|
| 39 |
| url |
VCID-bwck-hexx-bff8 |
| vulnerability_id |
VCID-bwck-hexx-bff8 |
| summary |
Cross-site scripting (XSS) vulnerability in the SQL editor in phpMyAdmin 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a SQL query that triggers JSON data in a response. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2045 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.5183 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51849 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51697 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51746 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51772 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51733 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51787 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51784 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51835 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51815 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.518 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00284 |
| scoring_system |
epss |
| scoring_elements |
0.51842 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2045 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2045
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bwck-hexx-bff8 |
|
| 40 |
| url |
VCID-c91y-txcw-2kdy |
| vulnerability_id |
VCID-c91y-txcw-2kdy |
| summary |
Cross-site Scripting
An issue was discovered in `js/designer/move.js` in phpMyAdm A Cross-Site Scripting vulnerability has been found where an attacker can use a crafted database name to trigger an XSS attack when that database is referenced from the Designer feature. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-12581 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70001 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70069 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.69974 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70026 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.69987 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.69978 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70089 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.7008 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70037 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.7005 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70065 |
| published_at |
2026-04-11T12:55:00Z |
|
| 11 |
| value |
0.0062 |
| scoring_system |
epss |
| scoring_elements |
0.70042 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-12581 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2018-12581 |
| reference_id |
CVE-2018-12581 |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2018-12581 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-12581, GHSA-vxj6-pm6r-23hq
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-c91y-txcw-2kdy |
|
| 41 |
| url |
VCID-cx8d-r8hf-3kak |
| vulnerability_id |
VCID-cx8d-r8hf-3kak |
| summary |
phpMyAdmin vulnerable to Cross-Site Request Forgery
The Transformation implementation in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 does not use the no-referrer Content Security Policy (CSP) protection mechanism, which makes it easier for remote attackers to conduct CSRF attacks by reading an authentication token in a Referer header, related to libraries/Header.php. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5739 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75976 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75895 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75898 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75931 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.7591 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75943 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75957 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75981 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75958 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75951 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75989 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00919 |
| scoring_system |
epss |
| scoring_elements |
0.75991 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5739 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
|
| 77 |
|
| 78 |
|
| 79 |
|
| 80 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5739 |
| reference_id |
CVE-2016-5739 |
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5739 |
|
| 88 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5739, GHSA-2p7v-jm8m-g3qq
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cx8d-r8hf-3kak |
|
| 42 |
| url |
VCID-cyj3-n6uq-d3ac |
| vulnerability_id |
VCID-cyj3-n6uq-d3ac |
| summary |
security update |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2561 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67314 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67336 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67214 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67251 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67275 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67252 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67304 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67317 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67337 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67324 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00532 |
| scoring_system |
epss |
| scoring_elements |
0.67289 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2561 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2561
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cyj3-n6uq-d3ac |
|
| 43 |
| url |
VCID-cypq-e4m8-q7ee |
| vulnerability_id |
VCID-cypq-e4m8-q7ee |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9855 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72503 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.7251 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72526 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72541 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72554 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72578 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72561 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72551 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72593 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72603 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00724 |
| scoring_system |
epss |
| scoring_elements |
0.72594 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9855 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9855
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cypq-e4m8-q7ee |
|
| 44 |
| url |
VCID-dfgy-a4j1-vfh2 |
| vulnerability_id |
VCID-dfgy-a4j1-vfh2 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6616 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54629 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.547 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54722 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54692 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54745 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54741 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54753 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54737 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54715 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54755 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00316 |
| scoring_system |
epss |
| scoring_elements |
0.54736 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6616 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6616
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dfgy-a4j1-vfh2 |
|
| 45 |
| url |
VCID-dgbb-768s-ducg |
| vulnerability_id |
VCID-dgbb-768s-ducg |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9858 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70411 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70425 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70442 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.7042 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70466 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70481 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70505 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.7049 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70476 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70518 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70526 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00637 |
| scoring_system |
epss |
| scoring_elements |
0.70506 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9858 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9858
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dgbb-768s-ducg |
|
| 46 |
| url |
VCID-ds3z-k4ry-tqfa |
| vulnerability_id |
VCID-ds3z-k4ry-tqfa |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6615 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65891 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65932 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65963 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65929 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.6598 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65992 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.66011 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65998 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.65968 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.66003 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.66017 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.005 |
| scoring_system |
epss |
| scoring_elements |
0.66004 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6615 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6615
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ds3z-k4ry-tqfa |
|
| 47 |
| url |
VCID-ds84-gm9m-syce |
| vulnerability_id |
VCID-ds84-gm9m-syce |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9865 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65381 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.6543 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65457 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65421 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65475 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65486 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65505 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65491 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65464 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65501 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65512 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00488 |
| scoring_system |
epss |
| scoring_elements |
0.65496 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9865 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9865
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ds84-gm9m-syce |
|
| 48 |
| url |
VCID-e9qs-mvaa-wyc6 |
| vulnerability_id |
VCID-e9qs-mvaa-wyc6 |
| summary |
Incomplete List of Disallowed Inputs
An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the attacking computer to connect despite the IP rules. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6624 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53332 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53227 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53251 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53276 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53244 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53296 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53291 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53341 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53326 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53309 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53347 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53352 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6624 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6624, GHSA-mhxj-6vf8-mwv3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e9qs-mvaa-wyc6 |
|
| 49 |
| url |
VCID-ebk2-vjau-57h9 |
| vulnerability_id |
VCID-ebk2-vjau-57h9 |
| summary |
Information Exposure
An attacker can exploit phpMyAdm to leak the contents of a local file because of an error in the transformation feature. The attacker must have access to the phpMyAdmin Configuration Storage tables, although these can easily be created in any database to which the attacker has access. An attacker must have valid credentials to log in to phpMyAdmin; this vulnerability does not allow an attacker to circumvent the login system. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-19968 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85409 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85495 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85498 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85494 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.8547 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85429 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85397 |
| published_at |
2026-04-01T12:55:00Z |
|
| 7 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85474 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85475 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85461 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85453 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.02543 |
| scoring_system |
epss |
| scoring_elements |
0.85432 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-19968 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-19968, GHSA-xc97-r49q-cxgc
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ebk2-vjau-57h9 |
|
| 50 |
| url |
VCID-ejut-u1r7-4qeb |
| vulnerability_id |
VCID-ejut-u1r7-4qeb |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9848 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56336 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56434 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56456 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56437 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56488 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56494 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56504 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56479 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.5646 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56493 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00336 |
| scoring_system |
epss |
| scoring_elements |
0.56464 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9848 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9848
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ejut-u1r7-4qeb |
|
| 51 |
| url |
VCID-f4d7-69e8-sqej |
| vulnerability_id |
VCID-f4d7-69e8-sqej |
| summary |
The plural form formula in ngettext family of calls in php-gettext before 1.0.12 allows remote attackers to execute arbitrary code. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8980 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.8922 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89224 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89162 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89168 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89183 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89186 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89204 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89208 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89218 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89214 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.04573 |
| scoring_system |
epss |
| scoring_elements |
0.89212 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8980 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-8980
|
| risk_score |
4.4 |
| exploitability |
0.5 |
| weighted_severity |
8.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f4d7-69e8-sqej |
|
| 52 |
| url |
VCID-f7gd-w9r7-xyb2 |
| vulnerability_id |
VCID-f7gd-w9r7-xyb2 |
| summary |
phpMyAdmin Cryptographic Vulnerability
The suggestPassword function in js/functions.js in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 relies on the Math.random JavaScript function, which makes it easier for remote attackers to guess passwords via a brute-force approach. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-1927 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70271 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70177 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70189 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70206 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70183 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70229 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70244 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70267 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70252 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70239 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.70281 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00628 |
| scoring_system |
epss |
| scoring_elements |
0.7029 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-1927 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-1927 |
| reference_id |
CVE-2016-1927 |
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-1927 |
|
| 73 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-1927, GHSA-4gmg-gwjh-3mmr
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f7gd-w9r7-xyb2 |
|
| 53 |
| url |
VCID-ff6r-sq16-nbff |
| vulnerability_id |
VCID-ff6r-sq16-nbff |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6611 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58388 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58474 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58494 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58465 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58517 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58524 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.5854 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58521 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58501 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58534 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00365 |
| scoring_system |
epss |
| scoring_elements |
0.58539 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6611 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6611
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ff6r-sq16-nbff |
|
| 54 |
| url |
VCID-fgr8-8j61-cufq |
| vulnerability_id |
VCID-fgr8-8j61-cufq |
| summary |
Information Exposure
An issue was discovered in phpMyAdmin. A user can exploit the "LOAD LOCAL INFILE" functionality to expose files on the server to the database system. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6612 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61453 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61298 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61377 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61406 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61375 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61422 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61437 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61459 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61444 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61426 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61465 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61469 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6612 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6612, GHSA-fcgm-62p3-f7cm
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fgr8-8j61-cufq |
|
| 55 |
| url |
VCID-ftdj-p5as-97hd |
| vulnerability_id |
VCID-ftdj-p5as-97hd |
| summary |
Cross-Site Request Forgery (CSRF)
phpMyAdm has CSRF, allowing an attacker to execute arbitrary SQL statements, related to `js/db_operations.js`, `js/tbl_operations.js`, `libraries/classes/Operations.php`, and `sql.php.` |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-10188 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.7618 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76093 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76096 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76128 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76107 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.7614 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76153 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76179 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76155 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76152 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76193 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00935 |
| scoring_system |
epss |
| scoring_elements |
0.76197 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-10188 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2018-10188 |
| reference_id |
CVE-2018-10188 |
| reference_type |
|
| scores |
| 0 |
| value |
6.8 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
8.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
8.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2018-10188 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-10188, GHSA-v6fp-h79x-9rqc
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ftdj-p5as-97hd |
|
| 56 |
| url |
VCID-fvnp-w4kk-3qfq |
| vulnerability_id |
VCID-fvnp-w4kk-3qfq |
| summary |
Cross-site Scripting
XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6608 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63751 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63625 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63685 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63711 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63671 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63723 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63741 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63755 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.6374 |
| published_at |
2026-04-21T12:55:00Z |
|
| 9 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63706 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00452 |
| scoring_system |
epss |
| scoring_elements |
0.63742 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6608 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6608, GHSA-jfmj-27fp-qp67
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fvnp-w4kk-3qfq |
|
| 57 |
| url |
VCID-g438-3c4q-9bcf |
| vulnerability_id |
VCID-g438-3c4q-9bcf |
| summary |
libraries/sql-parser/autoload.php in the SQL parser in phpMyAdmin 4.5.x before 4.5.4 allows remote attackers to obtain sensitive information via a crafted request, which reveals the full path in an error message. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2044 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63081 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63102 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.62958 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63017 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63046 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.6301 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63061 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63077 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63094 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.6308 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00437 |
| scoring_system |
epss |
| scoring_elements |
0.63058 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2044 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2044
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g438-3c4q-9bcf |
|
| 58 |
| url |
VCID-g6ud-92qe-hqcx |
| vulnerability_id |
VCID-g6ud-92qe-hqcx |
| summary |
phpMyAdmin unsanitized Git information
phpMyAdmin before 4.9.2 does not escape certain Git information, related to `libraries/classes/Display/GitRevision.php and libraries/classes/Footer.php`. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-19617 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78487 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78518 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78481 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78556 |
| published_at |
2026-04-21T12:55:00Z |
|
| 4 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78559 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.7856 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78532 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.7854 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78558 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78533 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78528 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.01155 |
| scoring_system |
epss |
| scoring_elements |
0.78501 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-19617 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-19617, GHSA-pgph-mc4p-f8c3
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g6ud-92qe-hqcx |
|
| 59 |
| url |
VCID-g76e-r914-xfgc |
| vulnerability_id |
VCID-g76e-r914-xfgc |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5702 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48021 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48053 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48097 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48102 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.4805 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.47991 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48041 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48039 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48062 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48038 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.48044 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00248 |
| scoring_system |
epss |
| scoring_elements |
0.47983 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5702 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5702 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
3.7 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 2 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 3 |
| value |
LOW |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5702 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5702, GHSA-xqw9-ffx7-g998
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g76e-r914-xfgc |
|
| 60 |
| url |
VCID-gmdu-q4tt-1fge |
| vulnerability_id |
VCID-gmdu-q4tt-1fge |
| summary |
security update |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-3903 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.7862 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78627 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78657 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78638 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78664 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78671 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78696 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78678 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.7867 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78698 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.01171 |
| scoring_system |
epss |
| scoring_elements |
0.78693 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-3903 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-3903
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gmdu-q4tt-1fge |
|
| 61 |
| url |
VCID-gu4y-aeqx-mqak |
| vulnerability_id |
VCID-gu4y-aeqx-mqak |
| summary |
SQL injection in phpMyAdmin
An issue was discovered in phpMyAdmin before 4.9.2. A crafted database/table name can be used to trigger a SQL injection attack through the designer feature. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-18622 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72851 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72752 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.7276 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.7278 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72756 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72794 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72808 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72832 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72815 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72807 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72849 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00736 |
| scoring_system |
epss |
| scoring_elements |
0.72859 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-18622 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-18622, GHSA-jgjc-332c-8cmc
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gu4y-aeqx-mqak |
|
| 62 |
| url |
VCID-gzqe-8ywj-h7hk |
| vulnerability_id |
VCID-gzqe-8ywj-h7hk |
| summary |
Cryptographic Issues
An issue was discovered in phpMyAdmin. When the user does not specify a `blowfish_secret` key for encrypting cookies, phpMyAdmin generates one at runtime. A vulnerability was reported where the way this value is created uses a weak algorithm. This could allow an attacker to determine the user's `blowfish_secret` and potentially decrypt their cookies. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9847 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62618 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.627 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62719 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62711 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62671 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62694 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62704 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62686 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62563 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62621 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.6267 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00432 |
| scoring_system |
epss |
| scoring_elements |
0.62653 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9847 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9847, GHSA-9xhq-pm7v-693p
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gzqe-8ywj-h7hk |
|
| 63 |
| url |
VCID-h22a-2v9u-4ucf |
| vulnerability_id |
VCID-h22a-2v9u-4ucf |
| summary |
Cross-site scripting (XSS) vulnerability in the goToFinish1NF function in js/normalization.js in phpMyAdmin 4.4.x before 4.4.15.3 and 4.5.x before 4.5.4 allows remote authenticated users to inject arbitrary web script or HTML via a table name to the normalization page. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2043 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60347 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60359 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60188 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60265 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60291 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60259 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60309 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60323 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60344 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.6033 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60311 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00394 |
| scoring_system |
epss |
| scoring_elements |
0.60351 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2043 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2043
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
4.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h22a-2v9u-4ucf |
|
| 64 |
| url |
VCID-h5wu-ugm7-4bah |
| vulnerability_id |
VCID-h5wu-ugm7-4bah |
| summary |
Code Injection
An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigger a remote code execution attack against certain PHP installations that are running with the dbase extension. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6633 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.8296 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82853 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82869 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82882 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82878 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82903 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82911 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82926 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82922 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82918 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.01833 |
| scoring_system |
epss |
| scoring_elements |
0.82957 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6633 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6633, GHSA-p849-vf5f-f3x7
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h5wu-ugm7-4bah |
|
| 65 |
| url |
VCID-hgvu-q7zf-3bcb |
| vulnerability_id |
VCID-hgvu-q7zf-3bcb |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9862 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.6384 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63899 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63926 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63884 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63934 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63952 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63964 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.6395 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63918 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63962 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00457 |
| scoring_system |
epss |
| scoring_elements |
0.63953 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9862 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9862
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hgvu-q7zf-3bcb |
|
| 66 |
| url |
VCID-hna7-wpcb-b3dq |
| vulnerability_id |
VCID-hna7-wpcb-b3dq |
| summary |
security update |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2206 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.7585 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75854 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75886 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75865 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75897 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75911 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75934 |
| published_at |
2026-04-21T12:55:00Z |
|
| 7 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75915 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75908 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75946 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00916 |
| scoring_system |
epss |
| scoring_elements |
0.75949 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-2206 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-2206
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hna7-wpcb-b3dq |
|
| 67 |
| url |
VCID-hnud-ktgb-dfe6 |
| vulnerability_id |
VCID-hnud-ktgb-dfe6 |
| summary |
Improper Privilege Management
An issue was discovered in `libraries/common` which allows users who have no password set to log in even if the administrator has set `$cfg['Servers'][$i]['AllowNoPassword']` to `false` (which is also the default). |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-18264 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53691 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53747 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53766 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53761 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53724 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53741 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53757 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53709 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53711 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53658 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53663 |
| published_at |
2026-04-02T12:55:00Z |
|
| 11 |
| value |
0.00305 |
| scoring_system |
epss |
| scoring_elements |
0.53643 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-18264 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2017-18264 |
| reference_id |
CVE-2017-18264 |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
9.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2017-18264 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-18264, GHSA-5868-g58j-vrj5
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hnud-ktgb-dfe6 |
|
| 68 |
| url |
VCID-hucu-azum-53bw |
| vulnerability_id |
VCID-hucu-azum-53bw |
| summary |
Information Exposure
phpMyAdmin allows remote attackers to obtain sensitive information. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5730 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79883 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79801 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.7988 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79879 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79851 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79859 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79875 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79854 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79846 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79817 |
| published_at |
2026-04-07T12:55:00Z |
|
| 10 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79829 |
| published_at |
2026-04-04T12:55:00Z |
|
| 11 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79808 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5730 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5730 |
| reference_id |
CVE-2016-5730 |
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
5.3 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 2 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5730 |
|
| 77 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5730, GHSA-wm9c-vcv2-vpqc
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hucu-azum-53bw |
|
| 69 |
| url |
VCID-j3s8-nxah-pqgz |
| vulnerability_id |
VCID-j3s8-nxah-pqgz |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6620 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.8035 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80357 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80376 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80366 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80395 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80405 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80423 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80408 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80401 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80431 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80432 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.01398 |
| scoring_system |
epss |
| scoring_elements |
0.80435 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6620 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6620
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j3s8-nxah-pqgz |
|
| 70 |
| url |
VCID-jhqf-gw62-9ygq |
| vulnerability_id |
VCID-jhqf-gw62-9ygq |
| summary |
security update |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2039 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59618 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59634 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59481 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59554 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59579 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59548 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59599 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59612 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59631 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59614 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59594 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59627 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2039 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2039
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jhqf-gw62-9ygq |
|
| 71 |
| url |
VCID-jj7e-xndw-6fcp |
| vulnerability_id |
VCID-jj7e-xndw-6fcp |
| summary |
Improper Input Validation
An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to bypass the logout timeout. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9851 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47365 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47299 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47335 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47355 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47303 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47358 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47356 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47379 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47354 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47361 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.4742 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00241 |
| scoring_system |
epss |
| scoring_elements |
0.47413 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9851 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9851, GHSA-r2vw-p77f-vc27
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jj7e-xndw-6fcp |
|
| 72 |
| url |
VCID-jma9-9uhu-xuc3 |
| vulnerability_id |
VCID-jma9-9uhu-xuc3 |
| summary |
SQL Injection
A vulnerability was reported where a specially crafted database name can be used to trigger an SQL injection attack through the designer feature. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-11768 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82849 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82795 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82801 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82817 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82813 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82808 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82847 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82846 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82743 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82759 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82772 |
| published_at |
2026-04-04T12:55:00Z |
|
| 11 |
| value |
0.01803 |
| scoring_system |
epss |
| scoring_elements |
0.82769 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-11768 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-11768, GHSA-x37v-98f9-mj32
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jma9-9uhu-xuc3 |
|
| 73 |
| url |
VCID-k7kn-ynne-b3gv |
| vulnerability_id |
VCID-k7kn-ynne-b3gv |
| summary |
Cross-site Scripting
A Cross-site scripting (XSS) vulnerability in the format function in `libraries/sql-parser/src/Utils/Error.php` in the SQL parser in phpMyAdmin allows remote authenticated users to inject arbitrary web script or HTML via a crafted query. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2559 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51272 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51286 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51307 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51252 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51297 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51319 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51311 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51227 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51211 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51174 |
| published_at |
2026-04-01T12:55:00Z |
|
| 10 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51263 |
| published_at |
2026-04-09T12:55:00Z |
|
| 11 |
| value |
0.00278 |
| scoring_system |
epss |
| scoring_elements |
0.51266 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2559 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2559 |
| reference_id |
CVE-2016-2559 |
| reference_type |
|
| scores |
| 0 |
| value |
3.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:S/C:N/I:P/A:N |
|
| 1 |
| value |
5.4 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
5.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2559 |
|
| 22 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2559, GHSA-7rf8-9r8f-qf59
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k7kn-ynne-b3gv |
|
| 74 |
| url |
VCID-mk34-h4nz-b3ey |
| vulnerability_id |
VCID-mk34-h4nz-b3ey |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, allowing
remote attackers to conduct XSS. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-26934 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86094 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86042 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86026 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86014 |
| published_at |
2026-04-01T12:55:00Z |
|
| 4 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86101 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86096 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86079 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86083 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86086 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86072 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.02788 |
| scoring_system |
epss |
| scoring_elements |
0.86061 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-26934 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-26934, GHSA-6349-53vr-7hcr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mk34-h4nz-b3ey |
|
| 75 |
| url |
VCID-mn5d-q2r5-qyhn |
| vulnerability_id |
VCID-mn5d-q2r5-qyhn |
| summary |
libraries/config/messages.inc.php in phpMyAdmin 4.0.x before 4.0.10.12, 4.4.x before 4.4.15.2, and 4.5.x before 4.5.3.1 allows remote attackers to obtain sensitive information via a crafted request, which reveals the full path in an error message. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8669 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65478 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65494 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65366 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65414 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65441 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65404 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65456 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65467 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65486 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65473 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65445 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00487 |
| scoring_system |
epss |
| scoring_elements |
0.65483 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-8669 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-8669
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mn5d-q2r5-qyhn |
|
| 76 |
| url |
VCID-mwtw-n1tv-hfd9 |
| vulnerability_id |
VCID-mwtw-n1tv-hfd9 |
| summary |
Cross-site Scripting
Cross-site scripting (XSS) vulnerability in `db_central_columns.php` in phpMyAdm allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-7260 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53422 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53503 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53522 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53517 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53481 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53448 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53399 |
| published_at |
2026-04-01T12:55:00Z |
|
| 7 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53498 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53515 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53466 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53469 |
| published_at |
2026-04-08T12:55:00Z |
|
| 11 |
| value |
0.00302 |
| scoring_system |
epss |
| scoring_elements |
0.53417 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-7260 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-7260, GHSA-gqmj-f46x-wqhw
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mwtw-n1tv-hfd9 |
|
| 77 |
| url |
VCID-nfuk-7739-xqaw |
| vulnerability_id |
VCID-nfuk-7739-xqaw |
| summary |
Improper Input Validation
The `checkHTTP` function in `libraries/Config.class.php` in phpMyAdmin does not verify X.509 certificates from `api.github.com` SSL servers, which allows man-in-the-middle attackers to spoof these servers and obtain sensitive information via a crafted certificate. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2562 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45846 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45877 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45854 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45851 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.459 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45907 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45853 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45801 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45829 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45764 |
| published_at |
2026-04-01T12:55:00Z |
|
| 10 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45857 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2562 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2562 |
| reference_id |
CVE-2016-2562 |
| reference_type |
|
| scores |
| 0 |
| value |
5.8 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:P/I:P/A:N |
|
| 1 |
| value |
6.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N |
|
| 2 |
| value |
6.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2562 |
|
| 22 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2562, GHSA-w8qg-j9fp-hrjf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nfuk-7739-xqaw |
|
| 78 |
| url |
VCID-ngtc-xtjn-xbhp |
| vulnerability_id |
VCID-ngtc-xtjn-xbhp |
| summary |
phpMyAdmin SQL injection vulnerability
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a crafted database or table name. The attack can be performed if a user attempts certain search operations on the malicious database or table. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10802 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81852 |
| published_at |
2026-04-11T12:55:00Z |
|
| 1 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81779 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81873 |
| published_at |
2026-04-21T12:55:00Z |
|
| 3 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81871 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.8187 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81834 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.8184 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81826 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.818 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81802 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81769 |
| published_at |
2026-04-01T12:55:00Z |
|
| 11 |
| value |
0.01622 |
| scoring_system |
epss |
| scoring_elements |
0.81833 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10802 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-10802, GHSA-f4cr-3xmc-2wpm
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ngtc-xtjn-xbhp |
|
| 79 |
| url |
VCID-nz1c-xk2s-3fau |
| vulnerability_id |
VCID-nz1c-xk2s-3fau |
| summary |
Cross-site Scripting
Cross-site scripting (XSS) vulnerability in `examples/openid.php` in phpMyAdmin allows remote attackers to inject arbitrary web script or HTML via vectors involving an OpenID error message. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5731 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62116 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62205 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62222 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62148 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62057 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62215 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62171 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62192 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62203 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62184 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.00424 |
| scoring_system |
epss |
| scoring_elements |
0.62166 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5731 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
|
| 77 |
|
| 78 |
|
| 79 |
|
| 80 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
|
| 88 |
|
| 89 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5731 |
| reference_id |
CVE-2016-5731 |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5731 |
|
| 90 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5731, GHSA-mwm8-36c5-j5cf
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nz1c-xk2s-3fau |
|
| 80 |
| url |
VCID-qcra-cu62-43he |
| vulnerability_id |
VCID-qcra-cu62-43he |
| summary |
Cross-site Scripting
In phpMyAdm, an XSS vulnerability was found in the navigation tree, where an attacker can deliver a payload to a user through a crafted `database/table` name. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2018-19970 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81175 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81074 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81083 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81108 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81107 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81135 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81141 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81159 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81146 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81139 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81176 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.01501 |
| scoring_system |
epss |
| scoring_elements |
0.81178 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2018-19970 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
|
| aliases |
CVE-2018-19970, GHSA-8987-93fh-rcwq
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qcra-cu62-43he |
|
| 81 |
| url |
VCID-qfg6-ugqq-3fdx |
| vulnerability_id |
VCID-qfg6-ugqq-3fdx |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6614 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78078 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78087 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78117 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78099 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78126 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78132 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78158 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.7814 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78136 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78169 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78168 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.0111 |
| scoring_system |
epss |
| scoring_elements |
0.78163 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6614 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6614
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qfg6-ugqq-3fdx |
|
| 82 |
| url |
VCID-qmpu-qjet-mqh8 |
| vulnerability_id |
VCID-qmpu-qjet-mqh8 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5097 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68021 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68039 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.67929 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.67951 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.67971 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.6795 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68001 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68014 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68037 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68024 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.67989 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00551 |
| scoring_system |
epss |
| scoring_elements |
0.68026 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5097 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5097
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qmpu-qjet-mqh8 |
|
| 83 |
| url |
VCID-qyt8-pcq2-kufz |
| vulnerability_id |
VCID-qyt8-pcq2-kufz |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6626 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62624 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62682 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62715 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62679 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62731 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62747 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62765 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62755 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62772 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.6278 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00433 |
| scoring_system |
epss |
| scoring_elements |
0.62761 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6626 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6626
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qyt8-pcq2-kufz |
|
| 84 |
| url |
VCID-r8te-6fr7-tuc2 |
| vulnerability_id |
VCID-r8te-6fr7-tuc2 |
| summary |
phpMyAdmin vulnerable to Cross-site Scripting
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.4.x before 4.4.15.7 and 4.6.x before 4.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) server-privileges certificate data fields on the user privileges page, (2) an "invalid JSON" error message in the error console, (3) a database name in the central columns implementation, (4) a group name, or (5) a search name in the bookmarks implementation. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5705 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69649 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69534 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69547 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69562 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69541 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69591 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69608 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.6963 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69615 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69601 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00605 |
| scoring_system |
epss |
| scoring_elements |
0.69641 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5705 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5705 |
| reference_id |
CVE-2016-5705 |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5705 |
|
| 63 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5705, GHSA-6q2j-8h8q-46mr
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-r8te-6fr7-tuc2 |
|
| 85 |
| url |
VCID-rggj-3cd7-m7hj |
| vulnerability_id |
VCID-rggj-3cd7-m7hj |
| summary |
phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 allows remote attackers to obtain sensitive information via a crafted request, which reveals the full path in an error message. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2038 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.7897 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78973 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78896 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78903 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78932 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78915 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78939 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78945 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78969 |
| published_at |
2026-04-21T12:55:00Z |
|
| 9 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78954 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.01204 |
| scoring_system |
epss |
| scoring_elements |
0.78944 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2038 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2038
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rggj-3cd7-m7hj |
|
| 86 |
| url |
VCID-scu3-cfyc-9qfz |
| vulnerability_id |
VCID-scu3-cfyc-9qfz |
| summary |
Cross-Site Request Forgery (CSRF)
A vulnerability was found that allows an attacker to trigger a CSRF attack against a phpMyAdmin user. The attacker can trick the user, for instance through a broken `<img>` tag pointing at the victim's phpMyAdmin database, and the attacker can potentially deliver a payload (such as a specific `INSERT` or `DELETE` statement) to the victim. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-12616 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98062 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98038 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98043 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98045 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98047 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98052 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98053 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98058 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98059 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.55051 |
| scoring_system |
epss |
| scoring_elements |
0.98065 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-12616 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-12616, GHSA-mfr9-pcm3-6mwc
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-scu3-cfyc-9qfz |
|
| 87 |
| url |
VCID-tc6d-vqe5-43fn |
| vulnerability_id |
VCID-tc6d-vqe5-43fn |
| summary |
security update |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2560 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80044 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80042 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.79962 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.7997 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.79991 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.79982 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.8001 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80019 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80039 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80022 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80014 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.0134 |
| scoring_system |
epss |
| scoring_elements |
0.80043 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2560 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
|
| 77 |
|
| 78 |
|
| 79 |
|
| 80 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
|
| 88 |
|
| 89 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2560
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tc6d-vqe5-43fn |
|
| 88 |
| url |
VCID-tgeh-wkw1-67bw |
| vulnerability_id |
VCID-tgeh-wkw1-67bw |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6619 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.55961 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56072 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56093 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56124 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56129 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.5614 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56117 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.561 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56134 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56137 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00332 |
| scoring_system |
epss |
| scoring_elements |
0.56107 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6619 |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6619
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tgeh-wkw1-67bw |
|
| 89 |
| url |
VCID-tks3-6uv4-kygf |
| vulnerability_id |
VCID-tks3-6uv4-kygf |
| summary |
phpMyAdmin SQL Injection
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was found in retrieval of the current username (in libraries/classes/Server/Privileges.php and libraries/classes/UserPassword.php). A malicious user with access to the server could create a crafted username, and then trick the victim into performing specific actions with that user account (such as editing its privileges). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10804 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85208 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85114 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85127 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85144 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85147 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85169 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85177 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85191 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85189 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85186 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.02444 |
| scoring_system |
epss |
| scoring_elements |
0.85207 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10804 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-10804, GHSA-h65r-8fp8-w7cx
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tks3-6uv4-kygf |
|
| 90 |
| url |
VCID-tydk-zjv1-nye6 |
| vulnerability_id |
VCID-tydk-zjv1-nye6 |
| summary |
Improper Input Validation
An issue was discovered in phpMyAdmin. An unauthenticated user is able to execute a denial-of-service (DoS) attack by forcing persistent connections when phpMyAdmin is running with `$cfg['AllowArbitraryServer']=true`. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6622 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77197 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77104 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.7711 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.7714 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77122 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77155 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77163 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77191 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.7717 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77165 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77206 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.01016 |
| scoring_system |
epss |
| scoring_elements |
0.77207 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6622 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6622, GHSA-qf3f-7x69-qfv3
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tydk-zjv1-nye6 |
|
| 91 |
| url |
VCID-ukgh-86dw-5yf1 |
| vulnerability_id |
VCID-ukgh-86dw-5yf1 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6627 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57363 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57446 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57468 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57445 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57497 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57501 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57517 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57494 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57475 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57498 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.0035 |
| scoring_system |
epss |
| scoring_elements |
0.57476 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6627 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6627
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ukgh-86dw-5yf1 |
|
| 92 |
| url |
VCID-unty-cjbe-pudk |
| vulnerability_id |
VCID-unty-cjbe-pudk |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9849 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44228 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44294 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44316 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.4425 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44302 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44307 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44325 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44293 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44292 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.4435 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.44341 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00217 |
| scoring_system |
epss |
| scoring_elements |
0.4427 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9849 |
|
| 1 |
|
| 2 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9849
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-unty-cjbe-pudk |
|
| 93 |
| url |
VCID-uw6h-fpzy-x3ap |
| vulnerability_id |
VCID-uw6h-fpzy-x3ap |
| summary |
URL Redirection to Untrusted Site (Open Redirect)
phpMyAdmin is vulnerable to an open redirect weakness. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000013 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47088 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.4698 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47035 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47031 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47055 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47029 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47036 |
| published_at |
2026-04-21T12:55:00Z |
|
| 7 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47092 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.46978 |
| published_at |
2026-04-01T12:55:00Z |
|
| 9 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47014 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.00239 |
| scoring_system |
epss |
| scoring_elements |
0.47033 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000013 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-1000013, GHSA-5h5m-fj48-qpjw
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uw6h-fpzy-x3ap |
|
| 94 |
| url |
VCID-v66b-3ghf-9uas |
| vulnerability_id |
VCID-v66b-3ghf-9uas |
| summary |
Improper Input Validation
An issue was discovered in phpMyAdmin involving the `$cfg['ArbitraryServerRegexp']` configuration directive. An attacker could reuse certain cookie values in a way of bypassing the servers defined by `ArbitraryServerRegexp`. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6629 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55121 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.54974 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55075 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55101 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55076 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55126 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55138 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55118 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.551 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.0032 |
| scoring_system |
epss |
| scoring_elements |
0.55142 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6629 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6629, GHSA-567r-vqj7-5cw7
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v66b-3ghf-9uas |
|
| 95 |
| url |
VCID-w37b-ep3h-tfaz |
| vulnerability_id |
VCID-w37b-ep3h-tfaz |
| summary |
Covert Timing Channel
`libraries/common.inc.php` in phpMyAdmin does not use a constant-time algorithm for comparing CSRF tokens, which makes it easier for remote attackers to bypass intended access restrictions by measuring time differences. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2041 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.773 |
| published_at |
2026-04-08T12:55:00Z |
|
| 1 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77269 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77287 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77252 |
| published_at |
2026-04-01T12:55:00Z |
|
| 4 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77344 |
| published_at |
2026-04-21T12:55:00Z |
|
| 5 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77352 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77312 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77316 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77336 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77258 |
| published_at |
2026-04-02T12:55:00Z |
|
| 10 |
| value |
0.01029 |
| scoring_system |
epss |
| scoring_elements |
0.77309 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-2041 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2041 |
| reference_id |
CVE-2016-2041 |
| reference_type |
|
| scores |
| 0 |
| value |
5.0 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
7.5 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 2 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
|
| 3 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-2041 |
|
| 73 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-2041, GHSA-8m97-xc46-rw9w
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w37b-ep3h-tfaz |
|
| 96 |
| url |
VCID-w56h-g9t8-1fgu |
| vulnerability_id |
VCID-w56h-g9t8-1fgu |
| summary |
phpMyAdmin ReCaptcha bypass
libraries/plugins/auth/AuthenticationCookie.class.php in phpMyAdmin 4.3.x before 4.3.13.2 and 4.4.x before 4.4.14.1 allows remote attackers to bypass a multiple-reCaptcha protection mechanism against brute-force credential guessing by providing a correct response to a single reCaptcha. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-6830 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95684 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95651 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95659 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95663 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95668 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95667 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.9567 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95678 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95681 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95633 |
| published_at |
2026-04-01T12:55:00Z |
|
| 10 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95643 |
| published_at |
2026-04-02T12:55:00Z |
|
| 11 |
| value |
0.21219 |
| scoring_system |
epss |
| scoring_elements |
0.95648 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-6830 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2015-6830, GHSA-v6fh-vg22-r6cm
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w56h-g9t8-1fgu |
|
| 97 |
| url |
VCID-wamt-3g12-t7ch |
| vulnerability_id |
VCID-wamt-3g12-t7ch |
| summary |
Cross-Site Request Forgery (CSRF)
An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9866 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44825 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44762 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44842 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44863 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44803 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44856 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44858 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44876 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44844 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44846 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44898 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00222 |
| scoring_system |
epss |
| scoring_elements |
0.44891 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9866 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9866, GHSA-jvxx-8xxf-5495
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wamt-3g12-t7ch |
|
| 98 |
| url |
VCID-we1q-4dc4-qufn |
| vulnerability_id |
VCID-we1q-4dc4-qufn |
| summary |
phpMyAdmin vulnerable to Cross-site Scripting
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) a crafted table name that is mishandled during privilege checking in table_row.phtml, (2) a crafted mysqld log_bin directive that is mishandled in log_selector.phtml, (3) the Transformation implementation, (4) AJAX error handling in js/ajax.js, (5) the Designer implementation, (6) the charts implementation in js/tbl_chart.js, or (7) the zoom-search implementation in rows_zoom.phtml. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5733 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77835 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77918 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77924 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77862 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77828 |
| published_at |
2026-04-01T12:55:00Z |
|
| 5 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77925 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77887 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77903 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77876 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77872 |
| published_at |
2026-04-08T12:55:00Z |
|
| 10 |
| value |
0.01085 |
| scoring_system |
epss |
| scoring_elements |
0.77844 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5733 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
|
| 76 |
|
| 77 |
|
| 78 |
|
| 79 |
|
| 80 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
|
| 88 |
|
| 89 |
|
| 90 |
|
| 91 |
|
| 92 |
|
| 93 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5733 |
| reference_id |
CVE-2016-5733 |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:N/I:P/A:N |
|
| 1 |
| value |
6.1 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 2 |
| value |
6.1 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5733 |
|
| 94 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5733, GHSA-cr65-p662-fx5c
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-we1q-4dc4-qufn |
|
| 99 |
| url |
VCID-whem-kvgm-47he |
| vulnerability_id |
VCID-whem-kvgm-47he |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5703 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81588 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81583 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.8148 |
| published_at |
2026-04-01T12:55:00Z |
|
| 3 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81492 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81513 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81511 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81539 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81544 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81564 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81552 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81545 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.01576 |
| scoring_system |
epss |
| scoring_elements |
0.81582 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5703 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5703
|
| risk_score |
4.4 |
| exploitability |
0.5 |
| weighted_severity |
8.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-whem-kvgm-47he |
|
| 100 |
| url |
VCID-x455-zvve-wye9 |
| vulnerability_id |
VCID-x455-zvve-wye9 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9854 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.65931 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.65973 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66003 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.65968 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66019 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66032 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66051 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66038 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66008 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66044 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66057 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00501 |
| scoring_system |
epss |
| scoring_elements |
0.66046 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9854 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9854
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-x455-zvve-wye9 |
|
| 101 |
| url |
VCID-xm9j-76hy-1qcp |
| vulnerability_id |
VCID-xm9j-76hy-1qcp |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6610 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63508 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63568 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63595 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63559 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.6361 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63627 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63642 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63593 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.6363 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63639 |
| published_at |
2026-04-18T12:55:00Z |
|
| 10 |
| value |
0.00449 |
| scoring_system |
epss |
| scoring_elements |
0.63622 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6610 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6610
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xm9j-76hy-1qcp |
|
| 102 |
| url |
VCID-xu1c-xtb4-9ygg |
| vulnerability_id |
VCID-xu1c-xtb4-9ygg |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6623 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67983 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67889 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67912 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67931 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.6791 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67961 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67975 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67998 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67985 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.6795 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67987 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.68 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6623 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6623, GHSA-2mcj-3r3r-v5wm
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xu1c-xtb4-9ygg |
|
| 103 |
| url |
VCID-xwyg-wr8p-r7he |
| vulnerability_id |
VCID-xwyg-wr8p-r7he |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6607 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67583 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67619 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.6764 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.6762 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67671 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67686 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67709 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67694 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.6766 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67696 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67708 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67688 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6607 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6607
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xwyg-wr8p-r7he |
|
| 104 |
| url |
VCID-y7gs-va61-zqaa |
| vulnerability_id |
VCID-y7gs-va61-zqaa |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9864 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.62919 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.62978 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63007 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.6297 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63022 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63038 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63055 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63041 |
| published_at |
2026-04-21T12:55:00Z |
|
| 8 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63019 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63056 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00436 |
| scoring_system |
epss |
| scoring_elements |
0.63063 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-9864 |
|
| 1 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-9864
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y7gs-va61-zqaa |
|
| 105 |
| url |
VCID-yfja-ssw3-skh1 |
| vulnerability_id |
VCID-yfja-ssw3-skh1 |
| summary |
Information Exposure
When the `AllowArbitraryServer` configuration setting is set to true, with the use of a rogue MySQL server, an attacker can read any file on the server that the web server's user can access. This is related to the `mysql.allow_local_infile` PHP configuration, and the inadvertent ignoring of `options(MYSQLI_OPT_LOCAL_INFILE` calls. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-6799 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98948 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98933 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98935 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98937 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98939 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98941 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98943 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98944 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98946 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.7658 |
| scoring_system |
epss |
| scoring_elements |
0.98947 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-6799 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2019-6799 |
| reference_id |
CVE-2019-6799 |
| reference_type |
|
| scores |
| 0 |
| value |
4.3 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:M/Au:N/C:P/I:N/A:N |
|
| 1 |
| value |
5.9 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 2 |
| value |
5.9 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
|
| 3 |
| value |
MODERATE |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2019-6799 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-6799, GHSA-c8wj-q36q-3wg4
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yfja-ssw3-skh1 |
|
| 106 |
| url |
VCID-ym9b-4su6-6fbr |
| vulnerability_id |
VCID-ym9b-4su6-6fbr |
| summary |
Cross-site Scripting vulnerability in drag-and-drop upload of phpMyAdmin
In phpMyAdmin before 4.9.11 and 5.x before 5.2.1, an authenticated user can trigger Cross-site Scripting (XSS) by uploading a crafted .sql file through the drag-and-drop interface. By disabling the configuration directive `$cfg['enable_drag_drop_import']`, users will be unable to use the drag and drop upload which would protect against the vulnerability. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-25727 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.1094 |
| scoring_system |
epss |
| scoring_elements |
0.93405 |
| published_at |
2026-04-13T12:55:00Z |
|
| 1 |
| value |
0.1094 |
| scoring_system |
epss |
| scoring_elements |
0.93434 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.1094 |
| scoring_system |
epss |
| scoring_elements |
0.93428 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.1094 |
| scoring_system |
epss |
| scoring_elements |
0.93423 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.11079 |
| scoring_system |
epss |
| scoring_elements |
0.93425 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.11079 |
| scoring_system |
epss |
| scoring_elements |
0.93433 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.11079 |
| scoring_system |
epss |
| scoring_elements |
0.93441 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.11079 |
| scoring_system |
epss |
| scoring_elements |
0.93445 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.11079 |
| scoring_system |
epss |
| scoring_elements |
0.9345 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.11079 |
| scoring_system |
epss |
| scoring_elements |
0.93451 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-25727 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-25727, GHSA-6hr3-44gx-g6wh
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ym9b-4su6-6fbr |
|
| 107 |
| url |
VCID-z22z-a5bq-97d3 |
| vulnerability_id |
VCID-z22z-a5bq-97d3 |
| summary |
Uncontrolled Resouce Consumption
An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6618 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67983 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67889 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67912 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67931 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.6791 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67961 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67975 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67998 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67985 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.6795 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.67987 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.0055 |
| scoring_system |
epss |
| scoring_elements |
0.68 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6618 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6618, GHSA-rv6m-chvv-wmxg
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z22z-a5bq-97d3 |
|
| 108 |
| url |
VCID-zbha-a7rp-nbd9 |
| vulnerability_id |
VCID-zbha-a7rp-nbd9 |
| summary |
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5734 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99433 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99441 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99439 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99438 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99437 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99436 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99434 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.87019 |
| scoring_system |
epss |
| scoring_elements |
0.99432 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-5734 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5734 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv2 |
| scoring_elements |
AV:N/AC:L/Au:N/C:P/I:P/A:P |
|
| 1 |
| value |
9.8 |
| scoring_system |
cvssv3 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 2 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 3 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://nvd.nist.gov/vuln/detail/CVE-2016-5734 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
| 64 |
|
| 65 |
|
| 66 |
|
| 67 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
|
| 72 |
|
| 73 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-5734, GHSA-rv57-479x-x4qv
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zbha-a7rp-nbd9 |
|
| 109 |
| url |
VCID-zg16-dfu1-g7dn |
| vulnerability_id |
VCID-zg16-dfu1-g7dn |
| summary |
Information Exposure
An issue was discovered in phpMyAdmin. A user can specially craft a symlink on disk, to a file which phpMyAdmin is permitted to read but the user is not, which phpMyAdmin will then expose to the user. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6613 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61453 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61298 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61377 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61406 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61375 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61422 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61437 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61459 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61444 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61426 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61465 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.00411 |
| scoring_system |
epss |
| scoring_elements |
0.61469 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2016-6613 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2016-6613, GHSA-6j2v-g9rg-qcm5
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zg16-dfu1-g7dn |
|
| 110 |
| url |
VCID-znfm-ak2t-mqdd |
| vulnerability_id |
VCID-znfm-ak2t-mqdd |
| summary |
phpMyAdmin SQL injection vulnerability
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was discovered where malicious code could be used to trigger an XSS attack through retrieving and displaying results (in tbl_get_field.php and libraries/classes/Display/Results.php). The attacker must be able to insert crafted data into certain database tables, which when retrieved (for instance, through the Browse tab) can trigger the XSS attack. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10803 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87708 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87643 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87653 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87666 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87667 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87688 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87694 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87706 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87699 |
| published_at |
2026-04-12T12:55:00Z |
|
| 9 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87697 |
| published_at |
2026-04-13T12:55:00Z |
|
| 10 |
| value |
0.03554 |
| scoring_system |
epss |
| scoring_elements |
0.87712 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10803 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-10803, GHSA-fcww-8wvc-38q9
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-znfm-ak2t-mqdd |
|
| 111 |
| url |
VCID-zreq-41ja-pbf1 |
| vulnerability_id |
VCID-zreq-41ja-pbf1 |
| summary |
Improper Input Validation
phpMyAdmin is vulnerable to a DoS weakness in the table editing functionality. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000014 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78417 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.7847 |
| published_at |
2026-04-21T12:55:00Z |
|
| 2 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78475 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78455 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78474 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78448 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78396 |
| published_at |
2026-04-01T12:55:00Z |
|
| 7 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78403 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78443 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.01144 |
| scoring_system |
epss |
| scoring_elements |
0.78434 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2017-1000014 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| purl |
pkg:deb/debian/phpmyadmin@4:4.6.6-4%2Bdeb9u1 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-2wka-nyka-9fbz |
|
| 1 |
| vulnerability |
VCID-2y3v-jnph-hfh4 |
|
| 2 |
| vulnerability |
VCID-41mv-6vqr-sua6 |
|
| 3 |
| vulnerability |
VCID-5657-kcyh-7bc2 |
|
| 4 |
| vulnerability |
VCID-986a-3m4g-83ge |
|
| 5 |
| vulnerability |
VCID-a286-32jj-eubk |
|
| 6 |
| vulnerability |
VCID-araw-4wdy-hqcz |
|
| 7 |
| vulnerability |
VCID-br1c-5bzf-ufeu |
|
| 8 |
| vulnerability |
VCID-c91y-txcw-2kdy |
|
| 9 |
| vulnerability |
VCID-ebk2-vjau-57h9 |
|
| 10 |
| vulnerability |
VCID-ftdj-p5as-97hd |
|
| 11 |
| vulnerability |
VCID-g6ud-92qe-hqcx |
|
| 12 |
| vulnerability |
VCID-gu4y-aeqx-mqak |
|
| 13 |
| vulnerability |
VCID-jma9-9uhu-xuc3 |
|
| 14 |
| vulnerability |
VCID-mk34-h4nz-b3ey |
|
| 15 |
| vulnerability |
VCID-mwtw-n1tv-hfd9 |
|
| 16 |
| vulnerability |
VCID-ngtc-xtjn-xbhp |
|
| 17 |
| vulnerability |
VCID-qcra-cu62-43he |
|
| 18 |
| vulnerability |
VCID-scu3-cfyc-9qfz |
|
| 19 |
| vulnerability |
VCID-tks3-6uv4-kygf |
|
| 20 |
| vulnerability |
VCID-yfja-ssw3-skh1 |
|
| 21 |
| vulnerability |
VCID-ym9b-4su6-6fbr |
|
| 22 |
| vulnerability |
VCID-znfm-ak2t-mqdd |
|
| 23 |
| vulnerability |
VCID-zyzp-aqd8-e3a9 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/phpmyadmin@4:4.6.6-4%252Bdeb9u1 |
|
|
| aliases |
CVE-2017-1000014, GHSA-9hrc-rwrq-v6mh
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zreq-41ja-pbf1 |
|
| 112 |
| url |
VCID-zyzp-aqd8-e3a9 |
| vulnerability_id |
VCID-zyzp-aqd8-e3a9 |
| summary |
phpMyAdmin Cross-Site Request Forgery (CSRF)
A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-12922 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97459 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97422 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97429 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97433 |
| published_at |
2026-04-04T12:55:00Z |
|
| 4 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97434 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97441 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97442 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97445 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97447 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.97456 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.4225 |
| scoring_system |
epss |
| scoring_elements |
0.9746 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-12922 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-12922, GHSA-4c9q-64gq-xhx4
|
| risk_score |
10.0 |
| exploitability |
2.0 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zyzp-aqd8-e3a9 |
|