{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/16364?format=json","vulnerability_id":"VCID-wdk8-s2xy-g7cu","summary":"phpMyAdmin Denial Of Service (DOS) attack\njs/get_scripts.js.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to cause a denial of service via a large array in the scripts parameter.","aliases":[{"alias":"CVE-2016-5706"},{"alias":"GHSA-9rmm-8fp4-26hv"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61915?format=json","purl":"pkg:composer/phpmyadmin/phpmyadmin@4.0.10%2B16","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.0.10%252B16"},{"url":"http://public2.vulnerablecode.io/api/packages/61916?format=json","purl":"pkg:composer/phpmyadmin/phpmyadmin@4.4.15%2B7","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.4.15%252B7"},{"url":"http://public2.vulnerablecode.io/api/packages/51958?format=json","purl":"pkg:composer/phpmyadmin/phpmyadmin@4.6.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v69-57zz-8bd2"},{"vulnerability":"VCID-6t3c-hfy4-p7bu"},{"vulnerability":"VCID-b3hq-kw4s-5qf1"},{"vulnerability":"VCID-d53j-zmaf-5bhx"},{"vulnerability":"VCID-dept-jpjr-2ucn"},{"vulnerability":"VCID-hd5x-5b7r-t3gw"},{"vulnerability":"VCID-j8zc-vrjw-6beg"},{"vulnerability":"VCID-pg17-js7s-uqgu"},{"vulnerability":"VCID-rdgz-3bbg-b7ac"},{"vulnerability":"VCID-rvyt-uwns-73gj"},{"vulnerability":"VCID-rz3e-5k7r-hygz"},{"vulnerability":"VCID-xpy9-5xyg-ayb7"},{"vulnerability":"VCID-y5xs-yzk9-f7g9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.6.3"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/51468?format=json","purl":"pkg:composer/phpmyadmin/phpmyadmin@4.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1nsq-6fpy-eudq"},{"vulnerability":"VCID-4ngs-2s88-fyam"},{"vulnerability":"VCID-4v69-57zz-8bd2"},{"vulnerability":"VCID-6t3c-hfy4-p7bu"},{"vulnerability":"VCID-6z4t-fy3f-mfbw"},{"vulnerability":"VCID-7t6b-1buc-8uhz"},{"vulnerability":"VCID-7x2d-9t8b-dqc4"},{"vulnerability":"VCID-b2hp-kkk6-jkcq"},{"vulnerability":"VCID-b3hq-kw4s-5qf1"},{"vulnerability":"VCID-b5yd-jhuc-cyca"},{"vulnerability":"VCID-b62k-cn7n-zyhy"},{"vulnerability":"VCID-ba25-jvqu-bkez"},{"vulnerability":"VCID-ckqr-buhv-9fd1"},{"vulnerability":"VCID-d53j-zmaf-5bhx"},{"vulnerability":"VCID-daby-k2rh-3kf4"},{"vulnerability":"VCID-dept-jpjr-2ucn"},{"vulnerability":"VCID-fd3x-mgqk-zbaq"},{"vulnerability":"VCID-gk4y-57gz-mkfv"},{"vulnerability":"VCID-gwz9-rgcx-vqa5"},{"vulnerability":"VCID-hd5x-5b7r-t3gw"},{"vulnerability":"VCID-j8zc-vrjw-6beg"},{"vulnerability":"VCID-m1cu-q5qb-g3hu"},{"vulnerability":"VCID-nytq-s7ve-8yb6"},{"vulnerability":"VCID-pg17-js7s-uqgu"},{"vulnerability":"VCID-q43w-un5j-cfbh"},{"vulnerability":"VCID-qkqz-u194-n3b8"},{"vulnerability":"VCID-rdgz-3bbg-b7ac"},{"vulnerability":"VCID-rvyt-uwns-73gj"},{"vulnerability":"VCID-rz3e-5k7r-hygz"},{"vulnerability":"VCID-vxv9-vw17-63a5"},{"vulnerability":"VCID-wdk8-s2xy-g7cu"},{"vulnerability":"VCID-xpy9-5xyg-ayb7"},{"vulnerability":"VCID-y5xs-yzk9-f7g9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/51472?format=json","purl":"pkg:composer/phpmyadmin/phpmyadmin@4.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4ngs-2s88-fyam"},{"vulnerability":"VCID-6z4t-fy3f-mfbw"},{"vulnerability":"VCID-7t6b-1buc-8uhz"},{"vulnerability":"VCID-ba25-jvqu-bkez"},{"vulnerability":"VCID-daby-k2rh-3kf4"},{"vulnerability":"VCID-fdd2-ejf7-juee"},{"vulnerability":"VCID-gk4y-57gz-mkfv"},{"vulnerability":"VCID-gwz9-rgcx-vqa5"},{"vulnerability":"VCID-gygb-37ex-mfe4"},{"vulnerability":"VCID-nytq-s7ve-8yb6"},{"vulnerability":"VCID-qkqz-u194-n3b8"},{"vulnerability":"VCID-s9ts-vzev-y3cu"},{"vulnerability":"VCID-vxv9-vw17-63a5"},{"vulnerability":"VCID-w6nj-p5y1-r3a3"},{"vulnerability":"VCID-wdk8-s2xy-g7cu"},{"vulnerability":"VCID-y6n7-nen6-ukbe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.4.0"},{"url":"http://public2.vulnerablecode.io/api/packages/52706?format=json","purl":"pkg:composer/phpmyadmin/phpmyadmin@4.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7gq2-vkhd-7kfs"},{"vulnerability":"VCID-7t6b-1buc-8uhz"},{"vulnerability":"VCID-amjm-d1qk-y7ce"},{"vulnerability":"VCID-ba25-jvqu-bkez"},{"vulnerability":"VCID-daby-k2rh-3kf4"},{"vulnerability":"VCID-fdd2-ejf7-juee"},{"vulnerability":"VCID-gk4y-57gz-mkfv"},{"vulnerability":"VCID-gwz9-rgcx-vqa5"},{"vulnerability":"VCID-nytq-s7ve-8yb6"},{"vulnerability":"VCID-qkqz-u194-n3b8"},{"vulnerability":"VCID-vfsw-wdzb-ayeq"},{"vulnerability":"VCID-w6nj-p5y1-r3a3"},{"vulnerability":"VCID-wdk8-s2xy-g7cu"},{"vulnerability":"VCID-ymkh-78sk-xuhe"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/phpmyadmin/phpmyadmin@4.6.0"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5706","reference_id":"","reference_type":"","scores":[{"value":"0.02778","scoring_system":"epss","scoring_elements":"0.86313","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-5706"},{"reference_url":"https://github.com/phpmyadmin/composer","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/phpmyadmin/composer"},{"reference_url":"https://github.com/phpmyadmin/phpmyadmin/commit/4767f24ea4c1e3822ce71a636c341e8ad8d07aa6","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/phpmyadmin/phpmyadmin/commit/4767f24ea4c1e3822ce71a636c341e8ad8d07aa6"},{"reference_url":"https://github.com/phpmyadmin/phpmyadmin/commit/805225a28c1428d7809e613c731c2126960e98df","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/phpmyadmin/phpmyadmin/commit/805225a28c1428d7809e613c731c2126960e98df"},{"reference_url":"https://github.com/phpmyadmin/phpmyadmin/commit/abb3685c8702de887988fee31a97ef4d80d856a1","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/phpmyadmin/phpmyadmin/commit/abb3685c8702de887988fee31a97ef4d80d856a1"},{"reference_url":"https://security.gentoo.org/glsa/201701-32","reference_id":"","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-32"},{"reference_url":"https://www.phpmyadmin.net/security/PMASA-2016-22","reference_id":"","reference_type":"","scores":[],"url":"https://www.phpmyadmin.net/security/PMASA-2016-22"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2016-5706","reference_id":"CVE-2016-5706","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2016-5706"},{"reference_url":"https://github.com/advisories/GHSA-9rmm-8fp4-26hv","reference_id":"GHSA-9rmm-8fp4-26hv","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-9rmm-8fp4-26hv"}],"weaknesses":[{"cwe_id":400,"name":"Uncontrolled Resource Consumption","description":"The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."}],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wdk8-s2xy-g7cu"}