RSS   Vulnerabilities for 'Phpboost'   RSS

2011-04-09
 
CVE-2011-1665

CWE-264
 

 
PHPBoost 3.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain backup SQL files via a direct request for predictable filenames in cache/backup/.

 


Copyright 2024, cxsecurity.com

 

Back to Top