RSS   Vulnerabilities for 'Dmx forum'   RSS

2006-06-12
 
CVE-2006-2947

 

 
Dmx Forum 2.1a allows remote attackers to obtain username and password information via a direct request to pops/edit.php with a modified membre parameter.

 
 
CVE-2006-2946

 

 
Dmx Forum 2.1a stores _includes/bd.inc under the web root with insufficient access control, which allows remote attackers to obtain database username and password information.

 


Copyright 2024, cxsecurity.com

 

Back to Top