SQL Injection Vulnerability in phpMyAdmin User Interface Preference Feature

SQL Injection Vulnerability in phpMyAdmin User Interface Preference Feature

CVE-2016-6619 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.