Search for packages
| purl | pkg:apk/alpine/phpmyadmin@4.6.5.2-r0?arch=ppc64le&distroversion=v3.6&reponame=community |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1mz5-3xe3-4fcy | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9863
GHSA-qgrq-64g6-mmh6 |
| VCID-4szd-esqn-93aq | Exposure of Sensitive Information to an Unauthorized Actor An issue was discovered in phpMyAdmin. By calling some scripts that are part of phpMyAdmin in an unexpected way, it is possible to trigger phpMyAdmin to display a PHP error message which contains the full path of the directory where phpMyAdmin is installed. During an execution timeout in the export functionality, the errors containing the full path of the directory of phpMyAdmin are written to the export file. All 4.6.x versions (prior to 4.6.5), and 4.4.x versions (prior to 4.4.15.9) are affected. This CVE is for the fopen wrapper issue. |
CVE-2016-9853
GHSA-rmmf-5xhh-gg27 |
| VCID-5mda-fksy-bqb2 | Cross-site Scripting An issue was discovered in phpMyAdmin. XSS is possible because of a weakness in a regular expression used in some JavaScript processing. |
CVE-2016-9857
GHSA-hmmx-wxh4-9w8w |
| VCID-63cb-2hqp-3ug8 | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9850
|
| VCID-7ga4-rjej-s3h1 | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9859
|
| VCID-8xac-hgvs-ykgn | Incomplete List of Disallowed Inputs An issue was discovered in phpMyAdmin. Due to the limitation in URL matching, it was possible to bypass the URL white-list protection. |
CVE-2016-9861
GHSA-r326-mp8g-6xfc |
| VCID-9xxd-uwwt-57ba | Cross-site Scripting An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10. |
CVE-2016-9856
GHSA-j8mx-x32r-5rf4 |
| VCID-bbmt-dnp7-w3hr | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9852
|
| VCID-bcmm-z26p-rkfp | Improper Input Validation An issue was discovered in phpMyAdmin. An unauthenticated user can execute a denial of service attack when phpMyAdmin is running with `$cfg['AllowArbitraryServer']=true`. |
CVE-2016-9860
GHSA-3hw5-fffc-qrg4 |
| VCID-cypq-e4m8-q7ee | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9855
|
| VCID-dgbb-768s-ducg | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9858
|
| VCID-ds84-gm9m-syce | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9865
|
| VCID-ejut-u1r7-4qeb | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9848
|
| VCID-gzqe-8ywj-h7hk | Cryptographic Issues An issue was discovered in phpMyAdmin. When the user does not specify a `blowfish_secret` key for encrypting cookies, phpMyAdmin generates one at runtime. A vulnerability was reported where the way this value is created uses a weak algorithm. This could allow an attacker to determine the user's `blowfish_secret` and potentially decrypt their cookies. |
CVE-2016-9847
GHSA-9xhq-pm7v-693p |
| VCID-hgvu-q7zf-3bcb | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9862
|
| VCID-jj7e-xndw-6fcp | Improper Input Validation An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to bypass the logout timeout. |
CVE-2016-9851
GHSA-r2vw-p77f-vc27 |
| VCID-unty-cjbe-pudk | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9849
|
| VCID-wamt-3g12-t7ch | Cross-Site Request Forgery (CSRF) An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected. |
CVE-2016-9866
GHSA-jvxx-8xxf-5495 |
| VCID-x455-zvve-wye9 | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9854
|
| VCID-y7gs-va61-zqaa | Multiple vulnerabilities have been found in phpMyAdmin, the worst of which could lead to arbitrary code execution. |
CVE-2016-9864
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-08T06:25:52.580534+00:00 | Alpine Linux Importer | Fixing | VCID-hgvu-q7zf-3bcb | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-08T06:25:13.610145+00:00 | Alpine Linux Importer | Fixing | VCID-unty-cjbe-pudk | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-08T06:24:20.883838+00:00 | Alpine Linux Importer | Fixing | VCID-dgbb-768s-ducg | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-08T06:23:34.158623+00:00 | Alpine Linux Importer | Fixing | VCID-8xac-hgvs-ykgn | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-06T04:55:11.436651+00:00 | Alpine Linux Importer | Fixing | VCID-1mz5-3xe3-4fcy | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-06T04:52:27.269837+00:00 | Alpine Linux Importer | Fixing | VCID-4szd-esqn-93aq | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-06T04:50:17.816972+00:00 | Alpine Linux Importer | Fixing | VCID-ds84-gm9m-syce | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-03T17:55:44.401372+00:00 | Alpine Linux Importer | Fixing | VCID-y7gs-va61-zqaa | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-03T17:55:00.657972+00:00 | Alpine Linux Importer | Fixing | VCID-7ga4-rjej-s3h1 | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-03T17:53:19.648158+00:00 | Alpine Linux Importer | Fixing | VCID-5mda-fksy-bqb2 | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-03T17:48:35.303841+00:00 | Alpine Linux Importer | Fixing | VCID-jj7e-xndw-6fcp | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-03T17:43:27.147600+00:00 | Alpine Linux Importer | Fixing | VCID-x455-zvve-wye9 | https://secdb.alpinelinux.org/v3.6/community.json | 38.1.0 |
| 2026-04-01T19:26:57.184417+00:00 | Alpine Linux Importer | Fixing | VCID-9xxd-uwwt-57ba | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T19:22:04.819642+00:00 | Alpine Linux Importer | Fixing | VCID-ejut-u1r7-4qeb | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T19:20:15.080075+00:00 | Alpine Linux Importer | Fixing | VCID-bcmm-z26p-rkfp | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T19:14:32.632859+00:00 | Alpine Linux Importer | Fixing | VCID-wamt-3g12-t7ch | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T19:07:32.543159+00:00 | Alpine Linux Importer | Fixing | VCID-bbmt-dnp7-w3hr | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T18:55:11.745541+00:00 | Alpine Linux Importer | Fixing | VCID-gzqe-8ywj-h7hk | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T18:55:08.168599+00:00 | Alpine Linux Importer | Fixing | VCID-cypq-e4m8-q7ee | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |
| 2026-04-01T18:55:06.795491+00:00 | Alpine Linux Importer | Fixing | VCID-63cb-2hqp-3ug8 | https://secdb.alpinelinux.org/v3.6/community.json | 38.0.0 |