CVE

Id
93440  
CVE No.
CVE-2016-6620  
Status
Candidate  
Description
An issue was discovered in phpMyAdmin. Some data is passed to the PHP unserialize() function without verification that it"s valid serialized data. The unserialization can result in code execution because of the interaction with object instantiation and autoloading. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.  
Phase
Assigned (20160806)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
793717 93440 CVE-2016-6620 CONFIRM:https://www.phpmyadmin.net/security/PMASA-2016-43  View
793718 93440 CVE-2016-6620 BID:95055  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
64514 JVNDB-2016-006289 Adobe Experience Manager Forms および LiveCycle の AACComponent におけるクロスサイトスクリプティングの脆弱性 Adobe Experience Manager Forms および LiveCycle の AACComponent には、入力検証に関する処理に不備があるため、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2016-6933 93440 4.3 6.1 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-006289.html  View