Description

libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.

Remediation

References

CVE-2008-7251

Related Vulnerabilities

WordPress Plugin LearnPress-WordPress LMS SQL Injection (4.1.3.2)

WordPress Plugin Instinct e-Commerce Arbitrary File Upload (3.4)

WordPress 2.9.1 Trashed Posts Security Bypass Vulnerability (2.9 - 2.9.1)

Python Other Vulnerability (CVE-2002-1119)

WordPress Plugin Social Login WP Cross-Site Request Forgery (5.0.0.0)

Severity

Critical

Classification

CVE-2008-7251 CWE-264

Tags

Missing Update Known Vulnerabilities