Description

libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.

Remediation

References

CVE-2008-7251

Related Vulnerabilities

MediaWiki Other Vulnerability (CVE-2007-0894)

Liferay Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-13445)

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2039)

WordPress Plugin WP Custom Admin Login Page Logo Unspecified Vulnerability (1.4.1)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3747)

Severity

Critical

Classification

CVE-2008-7251 CWE-264

Tags

Missing Update Known Vulnerabilities