CVE-2007-6603 (Hot_or_Not_Clone) |
|
| BugsAlert Home > CVE-2007-6603 (Hot_or_Not_Clone) | |
|
Hot or Not Clone has insufficient access control for producing and reading database backups, which allows remote attackers to obtain the adminstrator username and password via a direct request to control/backup/backup.php, which generates a backup/dump/backup.sql file that can be downloaded via a direct request to control/downloadfile.php. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6603 Learn more about CVE-2007-6603 (Hot_or_Not_Clone) |
|
| Tags: cve-2007-6603 hot clone | |
Related Items |
|
|
Umer Inc. Songs Portal "id" SQL Injection Vulnerability
|
|
|
FrSIRT - Mandriva Security Update Fixes Exiv2 Denial of Service Vulnerability
|
|
|
FrSIRT - Private Messaging Component for Limbo SQL Injection Vulnerability
|
|
|
Zero-Day Exploits Target Microsoft Jet Flaw
|
|
|
TYPO3 powermail Extension Cross-Site Scripting Vulnerability
|
|
|
CVE-2008-2127 (CMS Faethon)
|
|
|
GroupWise 7.0 mailto: scheme buffer overflow
|
|
