Description

libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.

Remediation

References

CVE-2008-7251

Related Vulnerabilities

Apache Denial of service in mod_lua r:parsebody Vulnerability (CVE-2022-29404)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0124)

WordPress Plugin Slider Revolution Responsive Arbitrary File Upload (3.0.95)

WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions 'memberslist-csv.php' Information Disclosure (1.4.9)

MySQL Out-of-bounds Write Vulnerability (CVE-2009-4484)

Severity

Critical

Classification

CVE-2008-7251 CWE-264

Tags

Missing Update Known Vulnerabilities