Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability - CVE-2008-1567 - Vulnerability Database
phpMyAdmin

phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability - CVE-2008-1567

Medium
Reference: CVE-2008-1567
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-1567
Title: phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability
Overview:

phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) password and the (3) Blowfish secret key in cleartext in a Session file under /tmp which allows local users to obtain sensitive information.