CVE-2007-0058

CVE-2007-0058 affects Cisco Clean Access (CCA) on the Clean Access Manager (CAM): versions 3.5.x up to 3.5.9 and 3.6.x up to 3.6.1.1 allow remote attackers to bypass authentication and download arbitrary manual database backups by brute-forcing the snapshot filename and requesting the file direct...

CVE-2006-3831

The Backup selection in Kailash Nadh boastMachine formerly bMachine 3.1 and earlier uses predicable filenames for database backups and stores the files under the web root with insufficient access control, which allows remote attackers to obtain sensitive information by downloading a backup file...

CVE-2006-3831

The CVE-2006-3831 issue affects Kailash Nadh boastMachine (formerly bMachine) versions up to 3.1. The backup feature creates database backups with predictable filenames and stores them under the web root with insufficient access controls, enabling remote attackers to download a backup file and ob...

PHP-Fusion <= 6.00.105 Multiple Vulnerabilities

According to its banner, the remote host is running a version of PHP-Fusion that is affected by multiple vulnerabilities : - An Information Disclosure Vulnerability PHP Fusion stores database backups in a known location within the web server's documents directory. An attacker may be able to...

PHP-Fusion <= 6.00.105 Accessible Database Backups Download Exploit

Exploit for unknown platform in category web applications =================================================================== PHP-Fusion = 6.00.105 Accessible Database Backups Download Exploit =================================================================== !/usr/bin/perl D A R K A S S A S S I...

CVE-2004-1724

The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusionadmin/dbbackups directory to world read/write/execute 777, which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator userna...