Описание
Vz (Adp) Forum 2.0.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the administrative account name and password hash via a direct request for users/admin.txt.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:vz_forum:vz_forum:2.0.3:*:*:*:*:*:*:*
EPSS
Процентиль: 90%
0.05379
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Vz (Adp) Forum 2.0.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the administrative account name and password hash via a direct request for users/admin.txt.
EPSS
Процентиль: 90%
0.05379
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other