High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-07-17	CVE-2017-1000017	Server-Side Request Forgery (SSRF) vulnerability in PHPmyadmin phpMyAdmin 4.0, 4.4 and 4.6 are vulnerable to a weakness where a user with appropriate permissions is able to connect to an arbitrary MySQL server network low complexity phpmyadmin CWE-918	8.8
2017-07-17	CVE-2017-1000016	Improper Input Validation vulnerability in PHPmyadmin A weakness was discovered where an attacker can inject arbitrary values in to the browser cookies. network low complexity phpmyadmin CWE-20	7.5
2017-07-17	CVE-2017-1000014	Improper Input Validation vulnerability in PHPmyadmin phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality network low complexity phpmyadmin CWE-20	7.5
2017-01-31	CVE-2016-6621	Server-Side Request Forgery (SSRF) vulnerability in PHPmyadmin The setup script for phpMyAdmin before 4.0.10.19, 4.4.x before 4.4.15.10, and 4.6.x before 4.6.6 allows remote attackers to conduct server-side request forgery (SSRF) attacks via unspecified vectors. network low complexity phpmyadmin CWE-918	8.6
2016-12-11	CVE-2016-9864	SQL Injection vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. network high complexity phpmyadmin CWE-89	7.5
2016-12-11	CVE-2016-9863	Improper Input Validation vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. network low complexity phpmyadmin CWE-20	7.5
2016-12-11	CVE-2016-9862	Code Injection vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. network low complexity phpmyadmin CWE-94	7.5
2016-12-11	CVE-2016-9861	7PK - Security Features vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. network low complexity phpmyadmin CWE-254	7.5
2016-12-11	CVE-2016-6633	Unspecified vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. network high complexity phpmyadmin	8.1
2016-12-11	CVE-2016-6631	OS Command Injection vulnerability in PHPmyadmin An issue was discovered in phpMyAdmin. network high complexity phpmyadmin CWE-78	7.5