Описание
mxCamArchive 2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain configuration details and passwords via a direct request for archive/config.ini.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:infireal:mxcamarchive:2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02249
Низкий
7.5 High
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
mxCamArchive 2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain configuration details and passwords via a direct request for archive/config.ini.
EPSS
Процентиль: 84%
0.02249
Низкий
7.5 High
CVSS2
Дефекты
CWE-200