exploitDog

GHSA-r2jx-m375-vp2w

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

registroTL stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for /usuarios.dat.

registroTL stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for /usuarios.dat.

Ссылки

EPSS

Процентиль: 91%

0.06088

Низкий

CVE ID

Связанные уязвимости

CVE-2006-5316

nvd

больше 19 лет назад

registroTL stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for /usuarios.dat.

EPSS

Процентиль: 91%

0.06088

Низкий

CVE ID