• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

PHPMyAdmin Plain Text Password Storage Vulnerability

An issue has been reported for phpMyAdmin whereby passwords are stored in a plain text format. As a result, a malicious local user capable of accessing the cookie file may be capable of obtaining the users phpMyAdmin password. This issue could be exaggerated by the fact that the credentials may be used across multiple systems.