CVE-2016-9848

MEDIUM5.3EPSS 0.34%

Published: 12/11/2016Modified: 11/19/2025

Also known as:ALPINE-CVE-2016-9848DEBIAN-CVE-2016-9848

Description

An issue was discovered in phpMyAdmin. phpinfo (phpinfo.php) shows PHP information including values of HttpOnly cookies. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected.

Affected packages (2)

Alpine/phpmyadminfrom 0, < 4.4.15.9-r0
Debian/phpmyadminfrom 0, < 4:4.6.5.1-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.3	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2016-9848
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2016-9848