Vulnerability Database

290,020

Total vulnerabilities in the database

CVE-2016-2560

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.15, 4.4.x before 4.4.15.5, and 4.5.x before 4.5.5.1 allow remote attackers to inject arbitrary web script or HTML via (1) a crafted Host HTTP header, related to libraries/Config.class.php; (2) crafted JSON data, related to file_echo.php; (3) a crafted SQL query, related to js/functions.js; (4) the initial parameter to libraries/server_privileges.lib.php in the user accounts page; or (5) the it parameter to libraries/controllers/TableSearchController.class.php in the zoom search page.

  • Published: Mar 1, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-2560
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.1
  • AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
phpmyadmin / phpmyadmin 4.0.0 4.0.0.x
phpmyadmin / phpmyadmin 4.4.13.1 4.4.13.1.x
phpmyadmin / phpmyadmin 4.4.6 4.4.6.x
phpmyadmin / phpmyadmin 4.4.2 4.4.2.x
phpmyadmin / phpmyadmin 4.4.1.1 4.4.1.1.x
phpmyadmin / phpmyadmin 4.4.15 4.4.15.x
phpmyadmin / phpmyadmin 4.4.14 4.4.14.x
phpmyadmin / phpmyadmin 4.4.15.4 4.4.15.4.x
phpmyadmin / phpmyadmin 4.5.0-rc1 4.5.0-rc1.x
phpmyadmin / phpmyadmin 4.0.5 4.0.5.x
phpmyadmin / phpmyadmin 4.0.3 4.0.3.x
phpmyadmin / phpmyadmin 4.4.6.1 4.4.6.1.x
phpmyadmin / phpmyadmin 4.0.10.10 4.0.10.10.x
phpmyadmin / phpmyadmin 4.4.0 4.4.0.x
phpmyadmin / phpmyadmin 4.5.0-beta1 4.5.0-beta1.x
phpmyadmin / phpmyadmin 4.5.4 4.5.4.x
phpmyadmin / phpmyadmin 4.0.10.13 4.0.10.13.x
phpmyadmin / phpmyadmin 4.4.1 4.4.1.x
phpmyadmin / phpmyadmin 4.5.3.1 4.5.3.1.x
phpmyadmin / phpmyadmin 4.4.11 4.4.11.x
phpmyadmin / phpmyadmin 4.4.9 4.4.9.x
phpmyadmin / phpmyadmin 4.0.7 4.0.7.x
phpmyadmin / phpmyadmin 4.0.10 4.0.10.x
phpmyadmin / phpmyadmin 4.5.1 4.5.1.x
phpmyadmin / phpmyadmin 4.0.10.4 4.0.10.4.x
phpmyadmin / phpmyadmin 4.5.0.2 4.5.0.2.x
phpmyadmin / phpmyadmin 4.0.8 4.0.8.x
phpmyadmin / phpmyadmin 4.4.8 4.4.8.x
phpmyadmin / phpmyadmin 4.0.2 4.0.2.x
phpmyadmin / phpmyadmin 4.0.10.1 4.0.10.1.x
phpmyadmin / phpmyadmin 4.5.2 4.5.2.x
phpmyadmin / phpmyadmin 4.0.10.14 4.0.10.14.x
phpmyadmin / phpmyadmin 4.5.0 4.5.0.x
phpmyadmin / phpmyadmin 4.0.6 4.0.6.x
phpmyadmin / phpmyadmin 4.0.10.9 4.0.10.9.x
phpmyadmin / phpmyadmin 4.4.15.2 4.4.15.2.x
phpmyadmin / phpmyadmin 4.0.4.1 4.0.4.1.x
phpmyadmin / phpmyadmin 4.4.7 4.4.7.x
phpmyadmin / phpmyadmin 4.0.1 4.0.1.x
phpmyadmin / phpmyadmin 4.0.10.7 4.0.10.7.x
phpmyadmin / phpmyadmin 4.4.3 4.4.3.x
phpmyadmin / phpmyadmin 4.4.12 4.4.12.x
phpmyadmin / phpmyadmin 4.0.10.6 4.0.10.6.x
phpmyadmin / phpmyadmin 4.0.10.3 4.0.10.3.x
phpmyadmin / phpmyadmin 4.5.0-beta2 4.5.0-beta2.x
phpmyadmin / phpmyadmin 4.0.4.2 4.0.4.2.x
phpmyadmin / phpmyadmin 4.4.5 4.4.5.x
phpmyadmin / phpmyadmin 4.4.13 4.4.13.x
phpmyadmin / phpmyadmin 4.0.10.11 4.0.10.11.x
phpmyadmin / phpmyadmin 4.5.4.1 4.5.4.1.x
phpmyadmin / phpmyadmin 4.0.10.5 4.0.10.5.x
phpmyadmin / phpmyadmin 4.5.3 4.5.3.x
phpmyadmin / phpmyadmin 4.0.10.12 4.0.10.12.x
phpmyadmin / phpmyadmin 4.0.9 4.0.9.x
phpmyadmin / phpmyadmin 4.4.15.3 4.4.15.3.x
phpmyadmin / phpmyadmin 4.0.4 4.0.4.x
phpmyadmin / phpmyadmin 4.0.10.8 4.0.10.8.x
phpmyadmin / phpmyadmin 4.5.5 4.5.5.x
phpmyadmin / phpmyadmin 4.4.10 4.4.10.x
phpmyadmin / phpmyadmin 4.4.15.1 4.4.15.1.x
phpmyadmin / phpmyadmin 4.4.4 4.4.4.x
phpmyadmin / phpmyadmin 4.5.0.1 4.5.0.1.x
phpmyadmin / phpmyadmin 4.0.10.2 4.0.10.2.x
phpmyadmin / phpmyadmin 4.4.14.1 4.4.14.1.x