Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:composer/phpmyadmin/phpmyadmin@4.6.2

Type composer

Namespace phpmyadmin

Name phpmyadmin

Version 4.6.2

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 4.9.11

Latest_non_vulnerable_version 5.2.2

Affected_by_vulnerabilities

url VCID-2vqn-z4en-duh4

vulnerability_id VCID-2vqn-z4en-duh4

summary

Information Exposure
phpMyAdmin allows remote attackers to obtain sensitive information.

references

reference_url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00113.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00113.html

reference_url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00114.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00114.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-5730

reference_id

reference_type

scores

value	0.01317
scoring_system	epss
scoring_elements	0.80195
published_at	2026-06-04T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.80219
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-5730

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5730
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5730

reference_url

https://github.com/phpmyadmin/composer

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/composer

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/27664605b945b13e1d2b71adea822ace2099cc96

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/27664605b945b13e1d2b71adea822ace2099cc96

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/331c560fbfa0e7d2dce674b5e88e983c5f2a451d

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/331c560fbfa0e7d2dce674b5e88e983c5f2a451d

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/96e0aa35653ec0c66084a7e9343465e16c1f769b

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/96e0aa35653ec0c66084a7e9343465e16c1f769b

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/b0180f18c828706af3a6800f0fb01a536d3ef8c7

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/b0180f18c828706af3a6800f0fb01a536d3ef8c7

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/cd229d718e8cb4bc8ba32446beaa82d27727b6f0

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/cd229d718e8cb4bc8ba32446beaa82d27727b6f0

reference_url

https://security.gentoo.org/glsa/201701-32

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.gentoo.org/glsa/201701-32

reference_url

https://www.phpmyadmin.net/security/PMASA-2016-23

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.phpmyadmin.net/security/PMASA-2016-23

reference_url	https://www.phpmyadmin.net/security/PMASA-2016-23/
reference_id
reference_type
scores
url	https://www.phpmyadmin.net/security/PMASA-2016-23/

reference_url

http://www.securityfocus.com/bid/91379

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/91379

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-5730

reference_id

CVE-2016-5730

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-5730

fixed_packages

url pkg:composer/phpmyadmin/phpmyadmin@4.6.3

purl pkg:composer/phpmyadmin/phpmyadmin@4.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3va7-xx14-gkds

vulnerability	VCID-44uc-xrvp-7bet

vulnerability	VCID-4avx-e9mf-2yb1

vulnerability	VCID-4vgu-cagj-hfhb

vulnerability	VCID-gmjk-222y-abda

vulnerability	VCID-gtps-py3z-13cu

vulnerability	VCID-jmn8-a5r9-2qc8

vulnerability	VCID-mgu4-pf1x-r3dy

vulnerability	VCID-nuju-ekmt-k7g9

vulnerability	VCID-q7pe-bvr1-g3bc

vulnerability	VCID-qqyb-zags-bbhz

vulnerability	VCID-rz6q-hthe-1uer

vulnerability	VCID-xqf5-yxf3-u3he

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.6.3

url pkg:composer/phpmyadmin/phpmyadmin@4.7.0

purl pkg:composer/phpmyadmin/phpmyadmin@4.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2at1-y3qg-77fb

vulnerability	VCID-32ja-yuuw-bbbh

vulnerability	VCID-4wn2-pnbv-sked

vulnerability	VCID-52xs-45kd-w3hz

vulnerability	VCID-5dd1-nzdy-zfez

vulnerability	VCID-7vpu-x9mb-q3c6

vulnerability	VCID-8rvw-n1fg-ffc2

vulnerability	VCID-ajf6-bk2g-wkb7

vulnerability	VCID-axtb-1njj-rbb4

vulnerability	VCID-bd83-vf81-sfa4

vulnerability	VCID-d3qn-js1p-7yeq

vulnerability	VCID-dx3h-z4dg-m3e1

vulnerability	VCID-j2k3-xghw-gfb3

vulnerability	VCID-kfr7-v6tb-eqau

vulnerability	VCID-m3kq-1cfg-mkgc

vulnerability	VCID-mzuh-5e5y-d3hr

vulnerability	VCID-p1jn-sxds-mqd1

vulnerability	VCID-q45d-5bf4-tff5

vulnerability	VCID-q7rn-1612-quau

vulnerability	VCID-r4zz-m2mr-9qeb

vulnerability	VCID-rx9z-rdmm-5fg6

vulnerability	VCID-w6nk-akeh-4ufg

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.7.0

aliases CVE-2016-5730, GHSA-wm9c-vcv2-vpqc

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2vqn-z4en-duh4

url VCID-k5ph-wws1-fqg4

vulnerability_id VCID-k5ph-wws1-fqg4

summary

Cross-site Scripting
Cross-site scripting (XSS) vulnerability in `examples/openid.php` in phpMyAdmin allows remote attackers to inject arbitrary web script or HTML via vectors involving an OpenID error message.

references

reference_url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00113.html

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00113.html

reference_url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00114.html

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2016-06/msg00114.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-5731

reference_id

reference_type

scores

value	0.00424
scoring_system	epss
scoring_elements	0.62546
published_at	2026-06-05T12:55:00Z

value	0.00424
scoring_system	epss
scoring_elements	0.625
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-5731

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1927
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1927

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2041
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2041

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2560
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2560

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2561
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2561

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5701
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5701

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5705
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5705

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5706
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5706

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5731
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5731

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5733
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5733

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5739

reference_url

https://github.com/phpmyadmin/composer

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/composer

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/418aeea3d83b0b6021bac311d849570acfc6e48c

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/418aeea3d83b0b6021bac311d849570acfc6e48c

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/52e7898

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/52e7898

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/5fefa51

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/5fefa51

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/78f6c54

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/78f6c54

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/94cf3864254ffaf3a69e97d8fc454888368b94ab

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/94cf3864254ffaf3a69e97d8fc454888368b94ab

reference_url

https://github.com/phpmyadmin/phpmyadmin/commit/d005ba6

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/phpmyadmin/phpmyadmin/commit/d005ba6

reference_url

https://security.gentoo.org/glsa/201701-32

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.gentoo.org/glsa/201701-32

reference_url

https://www.phpmyadmin.net/security/PMASA-2016-24

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.phpmyadmin.net/security/PMASA-2016-24

reference_url

http://www.debian.org/security/2016/dsa-3627

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2016/dsa-3627

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-5731

reference_id

CVE-2016-5731

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-5731

fixed_packages

url pkg:composer/phpmyadmin/phpmyadmin@4.6.3

purl pkg:composer/phpmyadmin/phpmyadmin@4.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3va7-xx14-gkds

vulnerability	VCID-44uc-xrvp-7bet

vulnerability	VCID-4avx-e9mf-2yb1

vulnerability	VCID-4vgu-cagj-hfhb

vulnerability	VCID-gmjk-222y-abda

vulnerability	VCID-gtps-py3z-13cu

vulnerability	VCID-jmn8-a5r9-2qc8

vulnerability	VCID-mgu4-pf1x-r3dy

vulnerability	VCID-nuju-ekmt-k7g9

vulnerability	VCID-q7pe-bvr1-g3bc

vulnerability	VCID-qqyb-zags-bbhz

vulnerability	VCID-rz6q-hthe-1uer

vulnerability	VCID-xqf5-yxf3-u3he

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.6.3

url pkg:composer/phpmyadmin/phpmyadmin@4.7.0

purl pkg:composer/phpmyadmin/phpmyadmin@4.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2at1-y3qg-77fb

vulnerability	VCID-32ja-yuuw-bbbh

vulnerability	VCID-4wn2-pnbv-sked

vulnerability	VCID-52xs-45kd-w3hz

vulnerability	VCID-5dd1-nzdy-zfez

vulnerability	VCID-7vpu-x9mb-q3c6

vulnerability	VCID-8rvw-n1fg-ffc2

vulnerability	VCID-ajf6-bk2g-wkb7

vulnerability	VCID-axtb-1njj-rbb4

vulnerability	VCID-bd83-vf81-sfa4

vulnerability	VCID-d3qn-js1p-7yeq

vulnerability	VCID-dx3h-z4dg-m3e1

vulnerability	VCID-j2k3-xghw-gfb3

vulnerability	VCID-kfr7-v6tb-eqau

vulnerability	VCID-m3kq-1cfg-mkgc

vulnerability	VCID-mzuh-5e5y-d3hr

vulnerability	VCID-p1jn-sxds-mqd1

vulnerability	VCID-q45d-5bf4-tff5

vulnerability	VCID-q7rn-1612-quau

vulnerability	VCID-r4zz-m2mr-9qeb

vulnerability	VCID-rx9z-rdmm-5fg6

vulnerability	VCID-w6nk-akeh-4ufg

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.7.0

aliases CVE-2016-5731, GHSA-mwm8-36c5-j5cf

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k5ph-wws1-fqg4

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.6.2

Package Instance