RunCMS 1.1 Database Configuration Information Disclosure Vulnerability

2005-03-18T00:00:00
ID EDB-ID:25237
Type exploitdb
Reporter Majid NT
Modified 2005-03-18T00:00:00

Description

RunCMS 1.1 Database Configuration Information Disclosure Vulnerability. CVE-2005-0828. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/12848/info

RunCMS is reportedly affected by an information disclosure vulnerability. This issue is due to a failure in the application to secure sensitive information.

Exploitation of this vulnerability could lead to the disclosure of database configuration details, including the database name, user name and password.

RunCMS was formerly named E-Xoops. 

http://www.example.com/[runcms]/class/debug/highlight.php?file=[runcmsinstallationpath]\mainfile.php&line=151#151