CVE-2016-5099
MEDIUM6.1EPSS 0.49%發布日:2016/7/5修改日:2026/5/7
也稱為:DEBIAN-CVE-2016-5099
描述
Cross-site scripting (XSS) vulnerability in phpMyAdmin 4.4.x before 4.4.15.6 and 4.6.x before 4.6.2 allows remote attackers to inject arbitrary web script or HTML via special characters that are mishandled during double URL decoding.
受影響套件(1)
- Debian/phpmyadminfrom 0, < 4:4.6.2-1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |