Описание
Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc.
Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3556
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35243
- http://osvdb.org/45744
- http://securityreason.com/securityalert/2857
- http://securityvulns.ru/Rdocument392.html
- http://www.securityfocus.com/archive/1/472727/100/0/threaded
- http://www.securityfocus.com/bid/24749
EPSS
Процентиль: 92%
0.07657
Низкий
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc.
EPSS
Процентиль: 92%
0.07657
Низкий