Description

libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.

Remediation

References

CVE-2008-7251

Related Vulnerabilities

WordPress Plugin YITH WooCommerce Social Login Security Bypass (1.3.4)

Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-1912)

WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.5.4)

WordPress Plugin Integration for Contact Form 7 and Constant Contact Cross-Site Scripting (1.0.8)

MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-7305)

Severity

Critical

Classification

CVE-2008-7251 CWE-264

Tags

Missing Update Known Vulnerabilities