Описание
PAD Site Scripts 3.6 stores sensitive information under the web document root with insufficient access control, which allows remote attackers to download the database and obtain sensitive information via a direct request for dbbackup.txt.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpeasycode:pad_site_scripts:3.6:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.03977
Низкий
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
PAD Site Scripts 3.6 stores sensitive information under the web document root with insufficient access control, which allows remote attackers to download the database and obtain sensitive information via a direct request for dbbackup.txt.
EPSS
Процентиль: 88%
0.03977
Низкий
5 Medium
CVSS2
Дефекты
CWE-264