Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-ustg-su7z-53cv
Vulnerability ID VCID-ustg-su7z-53cv
Aliases CVE-2008-1924
Summary Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows remote authenticated users with CREATE table permissions to read arbitrary files via a crafted HTTP POST request, related to use of an undefined UploadDir variable.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.002 https://api.first.org/data/v1/epss?cve=CVE-2008-1924
epss 0.002 https://api.first.org/data/v1/epss?cve=CVE-2008-1924
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1924.json
https://api.first.org/data/v1/epss?cve=CVE-2008-1924
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1924
443683 https://bugzilla.redhat.com/show_bug.cgi?id=443683
GLSA-200805-02 https://security.gentoo.org/glsa/200805-02
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.41931
EPSS Score 0.002
Published At June 4, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-04T17:07:09.251817+00:00 Debian Importer Import https://security-tracker.debian.org/tracker/data/json 38.6.0