CVE-2008-4183

2008-09-23T15:25:00
ID CVE-2008-4183
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:32:00

Description

IntegraMOD 1.4.x stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a backup via a direct request to a backup/backup-yyyy-dd-mm.sql filename.