CVE-2006-6378

2006-12-0717:00:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.8%

JSON

BTSaveMySql 1.2 stores sensitive data under the web root with insufficient access control, which allows remote attackers to obtain configuration and save files via direct requests.

References

securityreason.com/securityalert/2002

www.securityfocus.com/archive/1/453652/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/30760