CVE-2016-5730

Source
https://cve.org/CVERecord?id=CVE-2016-5730
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-5730.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-5730
Aliases
Downstream
Related
Published
2016-07-03T01:59:20.237Z
Modified
2026-05-17T11:54:33.740371605Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
[none]
Details

phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to obtain sensitive information via vectors involving (1) an array value to FormDisplay.php, (2) incorrect data to validate.php, (3) unexpected data to Validator.php, (4) a missing config directory during setup, or (5) an incorrect OpenID identifier data type, which reveals the full path in an error message.

Database specific
{
    "unresolved_ranges": [
        {
            "cpes": [
                "cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*"
            ],
            "vendor_product": "opensuse:leap",
            "extracted_events": [
                {
                    "last_affected": "42.1"
                }
            ],
            "source": "CPE_FIELD"
        },
        {
            "cpes": [
                "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*",
                "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*"
            ],
            "vendor_product": "opensuse:opensuse",
            "extracted_events": [
                {
                    "last_affected": "13.1"
                },
                {
                    "last_affected": "13.2"
                }
            ],
            "source": "CPE_FIELD"
        }
    ]
}
References

Affected packages