Описание
FunkBoard 0.66CF, and possibly earlier versions, does not properly restrict access to the (1) admin/mysql_install.php and (2) admin/pg_install.php scripts, which allows attackers to obtain the database username and password or inject arbitrary PHP code into info.php.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 0.66f (включая)
cpe:2.3:a:funkboard:funkboard:*:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00376
Низкий
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
FunkBoard 0.66CF, and possibly earlier versions, does not properly restrict access to the (1) admin/mysql_install.php and (2) admin/pg_install.php scripts, which allows attackers to obtain the database username and password or inject arbitrary PHP code into info.php.
EPSS
Процентиль: 59%
0.00376
Низкий
6.4 Medium
CVSS2
Дефекты
NVD-CWE-Other