Create an account

Subscribe to LWN

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

phpMyAdmin: information disclosure

Package(s):

phpMyAdmin

CVE #(s):

CVE-2008-1567

Created:

April 2, 2008

Updated:

February 2, 2009

Description:

phpMyAdmin saves MySQL username and password information in (potentially unprotected) session data.

Alerts:

SuSE	SUSE-SR:2008:026	2008-11-24
SuSE	SUSE-SR:2009:003	2009-02-02
Mandriva	MDVSA-2008:131	2008-07-04
Debian	DSA-1557-1	2008-04-24
Fedora	FEDORA-2008-2874	2008-04-01
Fedora	FEDORA-2008-2825	2008-04-01

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds