CVE-2008-3924 (cmme) |
|
| BugsAlert Home > CVE-2008-3924 (cmme) | |
|
The "Make a backup" functionality in Content Management Made Easy (CMME) 1.12 stores sensitive information under the web root with insufficient access control, which allows remote attackers to discover (1) account names and (2) password hashes via a direct request for (a) backup/cmme_data.zip or (b) backup/cmme_cmme.zip. Original Source: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3924 Learn more about CVE-2008-3924 (cmme) |
|
| Tags: cve-2008-3924 cmme | |
Related Items |
|
|
VU#596268: Wonderware SuiteLink null pointer dereference
|
|
|
CVE-2008-3892 (VMWare Workstation, VMWare Player, ACE, VMware Server)
|
|
|
CVE-2008-5193 (philboard)
|
|
|
Joomla! "mosConfig_absolute_path" File Inclusion
|
|
|
Turkish Hackers Relive Memories in Photobucket
|
|
|
FrSIRT - Fedora Security Update Fixes IPsec-Tools Denial of Service Issues
|
|
|
CVE-2008-2187 (mjguest)
|
|
