1 results (0.039 seconds)
CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 0
CVE-2007-0659
https://notcve.org/view.php?id=CVE-2007-0659
download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials. download.php en el fragmento de código MuddyDogPaws FileDownload versiones anteriores a 2.5 para MODx, permite a atacantes remotos descargar ficheros de su elección, como se demuestra descargando config.inc.php para obtener credenciales de base de datos. • http://modxcms.com/forums/index.php/topic%2C10470.0.html http://secunia.com/advisories/23953 http://www.muddydogpaws.com/Home.html http://www.securityfocus.com/bid/22327 http://www.vupen.com/english/advisories/2007/0426 •