SQL Injection Vulnerability in phpMyAdmin User Group and Designer Features
CVE-2016-6616 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:P/A:P
An issue was discovered in phpMyAdmin. In the "User group" and "Designer" features, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4) and 4.4.x versions (prior to 4.4.15.8) are affected.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.