Описание
download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials.
download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-0659
- http://modxcms.com/forums/index.php/topic%2C10470.0.html
- http://modxcms.com/forums/index.php/topic,10470.0.html
- http://secunia.com/advisories/23953
- http://www.muddydogpaws.com/Home.html
- http://www.securityfocus.com/bid/22327
- http://www.vupen.com/english/advisories/2007/0426
EPSS
Процентиль: 75%
0.00877
Низкий
CVE ID
Связанные уязвимости
nvd
около 19 лет назад
download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials.
EPSS
Процентиль: 75%
0.00877
Низкий