The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to initiate a denial of service attack in saved searches feature. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 184.108.40.206), and 4.0.x versions (prior to 220.127.116.11) are affected.
Base Score: 5
Impact Score: 2.9
Exploitability Score: 10
Base Score: 5.3
Impact Score: 1.4
Exploitability Score: 3.9
|143532||phpMyAdmin 4.0.x < 18.104.22.168 / 4.4.x < 22.214.171.124 / 4.6.x < 4.6.5 Multiple Vulnerabilities||Nessus||CGI abuses|
|96426||GLSA-201701-32 : phpMyAdmin: Multiple vulnerabilities||Nessus||Gentoo Local Security Checks|
|9830||phpMyAdmin 4.0.10.x < 126.96.36.199 / 4.4.15.x < 188.8.131.52 / 4.6.x < 4.6.5 Multiple Vulnerabilities||Nessus Network Monitor||CGI|