Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:composer/phpmyadmin/phpmyadmin@4.6.4
purl pkg:composer/phpmyadmin/phpmyadmin@4.6.4
Tags Ghost
Next non-vulnerable version 4.9.11
Latest non-vulnerable version 5.2.2
Risk 4.0
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-5mda-fksy-bqb2
Aliases:
CVE-2016-9857
GHSA-hmmx-wxh4-9w8w
Cross-site Scripting An issue was discovered in phpMyAdmin. XSS is possible because of a weakness in a regular expression used in some JavaScript processing.
4.6.5
Affected by 3 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-8xac-hgvs-ykgn
Aliases:
CVE-2016-9861
GHSA-r326-mp8g-6xfc
Incomplete List of Disallowed Inputs An issue was discovered in phpMyAdmin. Due to the limitation in URL matching, it was possible to bypass the URL white-list protection.
4.6.5
Affected by 3 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-9xxd-uwwt-57ba
Aliases:
CVE-2016-9856
GHSA-j8mx-x32r-5rf4
Cross-site Scripting An XSS issue was discovered in phpMyAdmin because of an improper fix for CVE-2016-2559 in PMASA-2016-10.
4.6.5
Affected by 3 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-bcmm-z26p-rkfp
Aliases:
CVE-2016-9860
GHSA-3hw5-fffc-qrg4
Improper Input Validation An issue was discovered in phpMyAdmin. An unauthenticated user can execute a denial of service attack when phpMyAdmin is running with `$cfg['AllowArbitraryServer']=true`.
4.6.5
Affected by 3 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-jj7e-xndw-6fcp
Aliases:
CVE-2016-9851
GHSA-r2vw-p77f-vc27
Improper Input Validation An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to bypass the logout timeout.
4.6.5
Affected by 3 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-04T14:31:21.431124+00:00 GHSA Importer Fixing VCID-fvnp-w4kk-3qfq https://github.com/advisories/GHSA-jfmj-27fp-qp67 38.1.0
2026-04-04T14:31:21.401227+00:00 GHSA Importer Fixing VCID-fgr8-8j61-cufq https://github.com/advisories/GHSA-fcgm-62p3-f7cm 38.1.0
2026-04-04T14:31:21.372077+00:00 GHSA Importer Fixing VCID-xu1c-xtb4-9ygg https://github.com/advisories/GHSA-2mcj-3r3r-v5wm 38.1.0
2026-04-04T14:31:21.286630+00:00 GHSA Importer Fixing VCID-zg16-dfu1-g7dn https://github.com/advisories/GHSA-6j2v-g9rg-qcm5 38.1.0
2026-04-04T14:31:21.257086+00:00 GHSA Importer Fixing VCID-e9qs-mvaa-wyc6 https://github.com/advisories/GHSA-mhxj-6vf8-mwv3 38.1.0
2026-04-04T14:31:21.044559+00:00 GHSA Importer Fixing VCID-64sy-unts-juf3 https://github.com/advisories/GHSA-r643-7xfg-ppc5 38.1.0
2026-04-04T14:31:20.958215+00:00 GHSA Importer Fixing VCID-v66b-3ghf-9uas https://github.com/advisories/GHSA-567r-vqj7-5cw7 38.1.0
2026-04-04T14:31:20.900436+00:00 GHSA Importer Fixing VCID-1dc8-kafr-3qd7 https://github.com/advisories/GHSA-phhm-63xx-v9rr 38.1.0
2026-04-04T14:31:20.745466+00:00 GHSA Importer Fixing VCID-h5wu-ugm7-4bah https://github.com/advisories/GHSA-p849-vf5f-f3x7 38.1.0
2026-04-04T14:31:20.655711+00:00 GHSA Importer Fixing VCID-8fu3-wm7d-qkeu https://github.com/advisories/GHSA-426q-975p-w5cr 38.1.0
2026-04-04T14:30:54.618661+00:00 GHSA Importer Fixing VCID-z22z-a5bq-97d3 https://github.com/advisories/GHSA-rv6m-chvv-wmxg 38.1.0
2026-04-04T14:30:54.587720+00:00 GHSA Importer Fixing VCID-9t2s-etzf-t3d2 https://github.com/advisories/GHSA-wpww-hx7x-xfjh 38.1.0
2026-04-04T14:30:54.529411+00:00 GHSA Importer Fixing VCID-tydk-zjv1-nye6 https://github.com/advisories/GHSA-qf3f-7x69-qfv3 38.1.0
2026-04-03T21:25:59.490203+00:00 GitLab Importer Fixing VCID-xu1c-xtb4-9ygg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6623.yml 38.1.0
2026-04-01T13:11:26.372630+00:00 GithubOSV Importer Fixing VCID-tydk-zjv1-nye6 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qf3f-7x69-qfv3/GHSA-qf3f-7x69-qfv3.json 38.0.0
2026-04-01T13:10:57.587068+00:00 GithubOSV Importer Fixing VCID-v66b-3ghf-9uas https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-567r-vqj7-5cw7/GHSA-567r-vqj7-5cw7.json 38.0.0
2026-04-01T13:10:33.274188+00:00 GithubOSV Importer Fixing VCID-h5wu-ugm7-4bah https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-p849-vf5f-f3x7/GHSA-p849-vf5f-f3x7.json 38.0.0
2026-04-01T13:10:30.716437+00:00 GithubOSV Importer Fixing VCID-xu1c-xtb4-9ygg https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-2mcj-3r3r-v5wm/GHSA-2mcj-3r3r-v5wm.json 38.0.0
2026-04-01T13:09:45.364543+00:00 GithubOSV Importer Fixing VCID-fgr8-8j61-cufq https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-fcgm-62p3-f7cm/GHSA-fcgm-62p3-f7cm.json 38.0.0
2026-04-01T13:09:43.444039+00:00 GithubOSV Importer Fixing VCID-zg16-dfu1-g7dn https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6j2v-g9rg-qcm5/GHSA-6j2v-g9rg-qcm5.json 38.0.0
2026-04-01T13:09:36.674058+00:00 GithubOSV Importer Fixing VCID-z22z-a5bq-97d3 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rv6m-chvv-wmxg/GHSA-rv6m-chvv-wmxg.json 38.0.0
2026-04-01T13:09:29.157097+00:00 GithubOSV Importer Fixing VCID-9t2s-etzf-t3d2 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wpww-hx7x-xfjh/GHSA-wpww-hx7x-xfjh.json 38.0.0
2026-04-01T13:09:14.588876+00:00 GithubOSV Importer Fixing VCID-e9qs-mvaa-wyc6 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mhxj-6vf8-mwv3/GHSA-mhxj-6vf8-mwv3.json 38.0.0
2026-04-01T13:08:45.071582+00:00 GithubOSV Importer Fixing VCID-64sy-unts-juf3 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-r643-7xfg-ppc5/GHSA-r643-7xfg-ppc5.json 38.0.0
2026-04-01T13:08:28.717883+00:00 GithubOSV Importer Fixing VCID-8fu3-wm7d-qkeu https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-426q-975p-w5cr/GHSA-426q-975p-w5cr.json 38.0.0
2026-04-01T13:08:07.658854+00:00 GithubOSV Importer Fixing VCID-fvnp-w4kk-3qfq https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-jfmj-27fp-qp67/GHSA-jfmj-27fp-qp67.json 38.0.0
2026-04-01T13:08:01.211832+00:00 GithubOSV Importer Fixing VCID-1dc8-kafr-3qd7 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-phhm-63xx-v9rr/GHSA-phhm-63xx-v9rr.json 38.0.0
2026-04-01T12:47:07.672155+00:00 GitLab Importer Affected by VCID-jj7e-xndw-6fcp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-9851.yml 38.0.0
2026-04-01T12:47:07.552339+00:00 GitLab Importer Affected by VCID-bcmm-z26p-rkfp https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-9860.yml 38.0.0
2026-04-01T12:47:07.531272+00:00 GitLab Importer Affected by VCID-9xxd-uwwt-57ba https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-9856.yml 38.0.0
2026-04-01T12:47:07.489511+00:00 GitLab Importer Affected by VCID-5mda-fksy-bqb2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-9857.yml 38.0.0
2026-04-01T12:47:07.410194+00:00 GitLab Importer Affected by VCID-8xac-hgvs-ykgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-9861.yml 38.0.0