Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2008-1924 - Vulnerability Database
phpMyAdmin

phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2008-1924

Low
Reference: CVE-2008-1924
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-1924
Title: phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Unspecified vulnerability in phpMyAdmin before 2.11.5.2 when running on shared hosts allows remote authenticated users with CREATE table permissions to read arbitrary files via a crafted HTTP POST request related to use of an undefined UploadDir variable.