PT-2017-10728 · Mysql Server+1 · Phpmyadmin+1

Butian_235

·

Published

2014-05-05

·

Updated

2024-06-15

·

CVE-2017-1000017

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions phpMyAdmin versions 4.0 through 4.6
Description The issue allows a user with appropriate permissions to connect to an arbitrary MySQL server.
Recommendations For versions 4.0 through 4.6, update to a version that contains a fix for this issue.

Exploit

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

ALT-PU-2014-1591
ALT-PU-2017-1604
CVE-2017-1000017
GHSA-99XJ-XQC9-98HR
OPENSUSE-SU-2024:11171-1

Affected Products

Alt Linux
Phpmyadmin