{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2016-07-25T00:00:00.000Z","descriptions":[{"lang":"en","value":"An issue was discovered in phpMyAdmin. A specially crafted database name could be used to run arbitrary PHP commands through the array export feature. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-07-07T09:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"94112","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/94112"},{"tags":["x_refsource_CONFIRM"],"url":"https://www.phpmyadmin.net/security/PMASA-2016-32"},{"name":"[debian-lts-announce] 20180706 [SECURITY] [DLA 1415-1] phpmyadmin security update","tags":["mailing-list","x_refsource_MLIST"],"url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00006.html"},{"name":"GLSA-201701-32","tags":["vendor-advisory","x_refsource_GENTOO"],"url":"https://security.gentoo.org/glsa/201701-32"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2016-6609","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"An issue was discovered in phpMyAdmin. A specially crafted database name could be used to run arbitrary PHP commands through the array export feature. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"94112","refsource":"BID","url":"http://www.securityfocus.com/bid/94112"},{"name":"https://www.phpmyadmin.net/security/PMASA-2016-32","refsource":"CONFIRM","url":"https://www.phpmyadmin.net/security/PMASA-2016-32"},{"name":"[debian-lts-announce] 20180706 [SECURITY] [DLA 1415-1] phpmyadmin security update","refsource":"MLIST","url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00006.html"},{"name":"GLSA-201701-32","refsource":"GENTOO","url":"https://security.gentoo.org/glsa/201701-32"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-06T01:36:29.411Z"},"title":"CVE Program Container","references":[{"name":"94112","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/94112"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://www.phpmyadmin.net/security/PMASA-2016-32"},{"name":"[debian-lts-announce] 20180706 [SECURITY] [DLA 1415-1] phpmyadmin security update","tags":["mailing-list","x_refsource_MLIST","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2018/07/msg00006.html"},{"name":"GLSA-201701-32","tags":["vendor-advisory","x_refsource_GENTOO","x_transferred"],"url":"https://security.gentoo.org/glsa/201701-32"}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2016-6609","datePublished":"2016-12-11T02:00:00.000Z","dateReserved":"2016-08-06T00:00:00.000Z","dateUpdated":"2024-08-06T01:36:29.411Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}