Search for packages
Package details: pkg:composer/phpmyadmin/phpmyadmin@4.6.3
purl pkg:composer/phpmyadmin/phpmyadmin@4.6.3
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (13)
Vulnerability Summary Fixed by
VCID-43mn-rf4g-ayg6
Aliases:
CVE-2016-6608
GHSA-jfmj-27fp-qp67
phpMyAdmin Cross-site Scripting (XSS) XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions (prior to 4.6.4) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-4k9b-4mxz-87e5
Aliases:
CVE-2016-6629
GHSA-567r-vqj7-5cw7
phpMyAdmin Authentication Bypass An issue was discovered in phpMyAdmin involving the `$cfg['ArbitraryServerRegexp']` configuration directive. An attacker could reuse certain cookie values in a way of bypassing the servers defined by ArbitraryServerRegexp. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-5qej-xfah-1kaa
Aliases:
CVE-2016-6628
GHSA-phhm-63xx-v9rr
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-96h9-nz2g-g3be
Aliases:
CVE-2016-6618
GHSA-rv6m-chvv-wmxg
phpMyAdmin Denial of service (DOS) attack in transformation feature An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-c4mp-bzke-4bhw
Aliases:
CVE-2016-6622
GHSA-qf3f-7x69-qfv3
phpMyAdmin DoS Vulnerability An issue was discovered in phpMyAdmin. An unauthenticated user is able to execute a denial-of-service (DoS) attack by forcing persistent connections when phpMyAdmin is running with `$cfg['AllowArbitraryServer']=true`. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-e3xu-5ny1-rkab
Aliases:
CVE-2016-6633
GHSA-p849-vf5f-f3x7
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-hy45-dt9r-y3a2
Aliases:
CVE-2016-6612
GHSA-fcgm-62p3-f7cm
phpMyAdmin Local file exposure An issue was discovered in phpMyAdmin. A user can exploit the LOAD LOCAL INFILE functionality to expose files on the server to the database system. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-jxqx-dh1t-eua2
Aliases:
CVE-2016-6624
GHSA-mhxj-6vf8-mwv3
phpMyAdmin IPv6 and proxy server IP-based authentication rule circumvention An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in the allowed range but the attacking computer is not allowed, this vulnerability can allow the attacking computer to connect despite the IP rules. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-kzr5-ef5h-dfbr
Aliases:
CVE-2016-6613
GHSA-6j2v-g9rg-qcm5
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-qmfr-5d3y-27au
Aliases:
CVE-2016-6609
GHSA-wpww-hx7x-xfjh
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-xrnq-v6ph-97hn
Aliases:
CVE-2016-9847
GHSA-9xhq-pm7v-693p
4.6.5
Affected by 3 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-yvwv-ebhn-x3g5
Aliases:
CVE-2016-6625
GHSA-r643-7xfg-ppc5
phpMyAdmin allows to detect if user is logged in An issue was discovered in phpMyAdmin. An attacker can determine whether a user is logged in to phpMyAdmin. The user's session, username, and password are not compromised by this vulnerability. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
VCID-z37z-773u-2fd7
Aliases:
CVE-2016-6632
GHSA-426q-975p-w5cr
4.6.4
Affected by 5 other vulnerabilities.
4.7.0
Affected by 22 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-08-02T12:42:35.315197+00:00 GHSA Importer Fixing VCID-3jkz-zdy6-n7dz https://github.com/advisories/GHSA-gcvp-cwgw-wx8j 37.0.0
2025-08-02T12:42:35.243603+00:00 GHSA Importer Fixing VCID-m59a-5uea-rfa9 https://github.com/advisories/GHSA-rv57-479x-x4qv 37.0.0
2025-08-02T12:42:35.204929+00:00 GHSA Importer Fixing VCID-x4xq-zycy-sfd5 https://github.com/advisories/GHSA-3q28-xfw3-2q35 37.0.0
2025-08-02T12:42:35.169577+00:00 GHSA Importer Fixing VCID-v3xe-8zk4-q3gm https://github.com/advisories/GHSA-xqw9-ffx7-g998 37.0.0
2025-08-02T12:41:49.195908+00:00 GHSA Importer Fixing VCID-2739-kr2f-fbd8 https://github.com/advisories/GHSA-mwm8-36c5-j5cf 37.0.0
2025-08-02T12:41:49.020873+00:00 GHSA Importer Fixing VCID-5bk1-q3nj-6qef https://github.com/advisories/GHSA-cr65-p662-fx5c 37.0.0
2025-08-02T12:41:48.690879+00:00 GHSA Importer Fixing VCID-fsw3-zq48-s3bh https://github.com/advisories/GHSA-rh74-5835-jpxp 37.0.0
2025-08-02T12:41:48.649046+00:00 GHSA Importer Fixing VCID-rspx-kym8-xydx https://github.com/advisories/GHSA-wm9c-vcv2-vpqc 37.0.0
2025-08-02T12:41:48.558664+00:00 GHSA Importer Fixing VCID-qhn7-b1w4-vkfn https://github.com/advisories/GHSA-2p7v-jm8m-g3qq 37.0.0
2025-08-02T12:41:48.518068+00:00 GHSA Importer Fixing VCID-1kme-6s76-k3es https://github.com/advisories/GHSA-6q2j-8h8q-46mr 37.0.0
2025-08-02T12:41:48.430312+00:00 GHSA Importer Fixing VCID-dpv2-3xj4-s7hm https://github.com/advisories/GHSA-9rmm-8fp4-26hv 37.0.0
2025-08-02T09:10:26.773218+00:00 GitLab Importer Fixing VCID-v3xe-8zk4-q3gm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5702.yml 37.0.0
2025-08-02T09:10:15.431961+00:00 GitLab Importer Fixing VCID-m59a-5uea-rfa9 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5734.yml 37.0.0
2025-08-02T09:10:07.830069+00:00 GitLab Importer Fixing VCID-3jkz-zdy6-n7dz https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5704.yml 37.0.0
2025-08-02T09:10:02.340917+00:00 GitLab Importer Fixing VCID-x4xq-zycy-sfd5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5732.yml 37.0.0
2025-07-31T09:28:05.466759+00:00 GitLab Importer Fixing VCID-5bk1-q3nj-6qef https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5733.yml 37.0.0
2025-07-31T09:28:02.007649+00:00 GitLab Importer Fixing VCID-fsw3-zq48-s3bh https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5701.yml 37.0.0
2025-07-31T09:27:49.394680+00:00 GitLab Importer Fixing VCID-qhn7-b1w4-vkfn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5739.yml 37.0.0
2025-07-31T09:27:48.916439+00:00 GitLab Importer Fixing VCID-1kme-6s76-k3es https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5705.yml 37.0.0
2025-07-31T09:27:46.919284+00:00 GitLab Importer Fixing VCID-dpv2-3xj4-s7hm https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-5706.yml 37.0.0
2025-07-31T09:21:39.670631+00:00 GitLab Importer Affected by VCID-96h9-nz2g-g3be https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6618.yml 37.0.0
2025-07-31T09:21:39.637572+00:00 GitLab Importer Affected by VCID-yvwv-ebhn-x3g5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6625.yml 37.0.0
2025-07-31T09:21:39.601824+00:00 GitLab Importer Affected by VCID-qmfr-5d3y-27au https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6609.yml 37.0.0
2025-07-31T09:21:39.565041+00:00 GitLab Importer Affected by VCID-kzr5-ef5h-dfbr https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6613.yml 37.0.0
2025-07-31T09:21:39.525309+00:00 GitLab Importer Affected by VCID-43mn-rf4g-ayg6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6608.yml 37.0.0
2025-07-31T09:21:39.455296+00:00 GitLab Importer Affected by VCID-4k9b-4mxz-87e5 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6629.yml 37.0.0
2025-07-31T09:21:39.380019+00:00 GitLab Importer Affected by VCID-jxqx-dh1t-eua2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6624.yml 37.0.0
2025-07-31T09:21:39.343941+00:00 GitLab Importer Affected by VCID-hy45-dt9r-y3a2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6612.yml 37.0.0
2025-07-31T09:21:39.310455+00:00 GitLab Importer Affected by VCID-e3xu-5ny1-rkab https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6633.yml 37.0.0
2025-07-31T09:21:39.202575+00:00 GitLab Importer Affected by VCID-z37z-773u-2fd7 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6632.yml 37.0.0
2025-07-31T09:21:39.129008+00:00 GitLab Importer Affected by VCID-c4mp-bzke-4bhw https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6622.yml 37.0.0
2025-07-31T09:21:39.091516+00:00 GitLab Importer Affected by VCID-xrnq-v6ph-97hn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-9847.yml 37.0.0
2025-07-31T09:21:39.052552+00:00 GitLab Importer Affected by VCID-5qej-xfah-1kaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/phpmyadmin/phpmyadmin/CVE-2016-6628.yml 37.0.0
2025-07-31T09:16:28.530151+00:00 GithubOSV Importer Fixing VCID-5bk1-q3nj-6qef https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-cr65-p662-fx5c/GHSA-cr65-p662-fx5c.json 37.0.0
2025-07-31T09:14:55.951899+00:00 GithubOSV Importer Fixing VCID-rspx-kym8-xydx https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wm9c-vcv2-vpqc/GHSA-wm9c-vcv2-vpqc.json 37.0.0
2025-07-31T09:13:44.192681+00:00 GithubOSV Importer Fixing VCID-2739-kr2f-fbd8 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mwm8-36c5-j5cf/GHSA-mwm8-36c5-j5cf.json 37.0.0
2025-07-31T09:13:15.696266+00:00 GithubOSV Importer Fixing VCID-3jkz-zdy6-n7dz https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-gcvp-cwgw-wx8j/GHSA-gcvp-cwgw-wx8j.json 37.0.0
2025-07-31T09:12:54.744478+00:00 GithubOSV Importer Fixing VCID-fsw3-zq48-s3bh https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rh74-5835-jpxp/GHSA-rh74-5835-jpxp.json 37.0.0
2025-07-31T09:12:28.894288+00:00 GithubOSV Importer Fixing VCID-dpv2-3xj4-s7hm https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-9rmm-8fp4-26hv/GHSA-9rmm-8fp4-26hv.json 37.0.0
2025-07-31T09:11:07.276350+00:00 GithubOSV Importer Fixing VCID-x4xq-zycy-sfd5 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-3q28-xfw3-2q35/GHSA-3q28-xfw3-2q35.json 37.0.0
2025-07-31T09:09:22.747813+00:00 GithubOSV Importer Fixing VCID-1kme-6s76-k3es https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6q2j-8h8q-46mr/GHSA-6q2j-8h8q-46mr.json 37.0.0
2025-07-31T09:08:36.286497+00:00 GithubOSV Importer Fixing VCID-v3xe-8zk4-q3gm https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-xqw9-ffx7-g998/GHSA-xqw9-ffx7-g998.json 37.0.0
2025-07-31T09:08:13.165561+00:00 GithubOSV Importer Fixing VCID-qhn7-b1w4-vkfn https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-2p7v-jm8m-g3qq/GHSA-2p7v-jm8m-g3qq.json 37.0.0
2025-07-31T09:07:25.693179+00:00 GithubOSV Importer Fixing VCID-m59a-5uea-rfa9 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rv57-479x-x4qv/GHSA-rv57-479x-x4qv.json 37.0.0