Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-jc5h-5wna-zbek
Vulnerability ID VCID-jc5h-5wna-zbek
Aliases CVE-2008-1567
Summary phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) password, and the (3) Blowfish secret key, in cleartext in a Session file under /tmp, which allows local users to obtain sensitive information.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.0004 https://api.first.org/data/v1/epss?cve=CVE-2008-1567
epss 0.0004 https://api.first.org/data/v1/epss?cve=CVE-2008-1567
epss 0.0004 https://api.first.org/data/v1/epss?cve=CVE-2008-1567
epss 0.0004 https://api.first.org/data/v1/epss?cve=CVE-2008-1567
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1567.json
https://api.first.org/data/v1/epss?cve=CVE-2008-1567
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1567
439974 https://bugzilla.redhat.com/show_bug.cgi?id=439974
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.12532
EPSS Score 0.0004
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:09.203431+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0