Описание
MySQLDumper 1.21b through 1.23 REV227 uses a "Limit GET" statement in the .htaccess authentication mechanism, which allows remote attackers to bypass authentication requirements via HTTP POST requests.
MySQLDumper 1.21b through 1.23 REV227 uses a "Limit GET" statement in the .htaccess authentication mechanism, which allows remote attackers to bypass authentication requirements via HTTP POST requests.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3567
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35291
- http://archives.neohapsis.com/archives/bugtraq/2007-08/0052.html
- http://osvdb.org/42460
- http://securityreason.com/securityalert/2859
- http://www.securityfocus.com/archive/1/472756/100/0/threaded
- http://www.securityfocus.com/bid/24759
EPSS
Процентиль: 77%
0.0105
Низкий
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
MySQLDumper 1.21b through 1.23 REV227 uses a "Limit GET" statement in the .htaccess authentication mechanism, which allows remote attackers to bypass authentication requirements via HTTP POST requests.
EPSS
Процентиль: 77%
0.0105
Низкий