CVE-2019-18868

2020-05-0712:57:47

mitre

www.cve.org

AI Score

9.5

Confidence

High

EPSS

0.006

Percentile

77.9%

JSON

Blaauw Remote Kiln Control through v3.00r4 allows an unauthenticated attacker to access MySQL credentials in cleartext in /engine/db.inc, /lang/nl.bak, or /lang/en.bak.

References

github.com/lodestone-security/CVEs/blob/master/remote_kiln_control/an_unfortunate_kilnundrum.md

lodestonesecurity.com