CVE-2016-9866

high-risk
Published 2016-12-11

An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

Do I need to act?

-
0.22% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (20)

Affected Vendors

Phpmyadmin

References (6)

http://www.securityfocus.com/bid/94536
https://security.gentoo.org/glsa/201701-32
Patch https://www.phpmyadmin.net/security/PMASA-2016-71
http://www.securityfocus.com/bid/94536
https://security.gentoo.org/glsa/201701-32
Patch https://www.phpmyadmin.net/security/PMASA-2016-71
60
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 1/34 · Minimal
Exposure 27/34 · High