Description

libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.

Remediation

References

CVE-2008-7251

Related Vulnerabilities

WordPress Plugin Zephyr Project Manager Cross-Site Scripting (3.2.40)

WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management Information Disclosure (1.38.3.2)

WordPress Plugin Modern Events Calendar Lite Arbitrary File Upload (7.11.0)

WordPress Plugin Custom Login Page Customizer-LoginPress Unspecified Vulnerability (1.1.15)

MongoDb Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-20803)

Severity

Critical

Classification

CVE-2008-7251 CWE-264

Tags

Missing Update Known Vulnerabilities