exploitDog

CVE-2008-6815

Опубликовано: 28 мая 2009

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

mykdownload.php in MyKtools 2.4 does not require administrative authentication, which allows remote attackers to read a database backup by making a direct request, and then sending an unspecified request to the download page for the backup.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:myktools:myktools:2.4:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04413

Низкий

5 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-ch53-6vvw-hvmw

github

больше 3 лет назад

mykdownload.php in MyKtools 2.4 does not require administrative authentication, which allows remote attackers to read a database backup by making a direct request, and then sending an unspecified request to the download page for the backup.

EPSS

Процентиль: 89%

0.04413

Низкий

5 Medium

CVSS2

Дефекты

CWE-287