Description
WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2020-2805 Vulnerability (CVE-2020-2805)
Plone CMS Improper Authentication Vulnerability (CVE-2009-0662)
WordPress Plugin FV Flowplayer Video Player SQL Injection (7.5.15.727)
MediaWiki CVE-2022-28206 Vulnerability (CVE-2022-28206)
WordPress Plugin myghpay WooCommerce Payment Gateway Cross-Site Scripting (3.0)