Description
WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database.
Remediation
References
Related Vulnerabilities
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-6832)
Atlassian Jira CVE-2021-39116 Vulnerability (CVE-2021-39116)
WordPress Plugin WP Events Calendar 'event_id' Parameter SQL Injection (6.5.2)
Oracle Database Server CVE-2007-2110 Vulnerability (CVE-2007-2110)
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0866)