RSS   Vulnerabilities for 'Mybackup'   RSS

2010-08-25
 
CVE-2009-4978

CWE-22
 

 
Directory traversal vulnerability in down.php in MyBackup 1.4.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.

 
 
CVE-2009-4977

CWE-94
 

 
PHP remote file inclusion vulnerability in index.php in MyBackup 1.4.0 allows remote authenticated users to execute arbitrary PHP code via a URL in the main_content parameter.

 

 >>> Vendor: Tufat 6 Products
Osdate
Flashchat
Flashbb
Mycard
Mybackup
Flashcard


Copyright 2024, cxsecurity.com

 

Back to Top